axiom-mapkit-ref

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's documentation demonstrates runtime ingestion of open third-party content — e.g., MKLocalSearch/MKLocalSearchCompleter results used to populate markers and read item.name/item.url (Part 6) and the MKTileOverlay with a URL template that pulls map tiles from arbitrary servers (Part 9 "Adding Overlays") — which are public sources the agent would read and that can materially affect behavior/display.