channel3-api

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly includes a "URL Enrichment" endpoint (POST /v0/enrich) and examples (client.enrich.enrich_url(url="...")) that accept arbitrary product page URLs and perform real-time extraction of those third-party pages (and supports external image_url inputs), so untrusted web content is fetched and parsed and can materially influence subsequent behavior.