axiom-swift

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's transferable-ref documentation (skills/transferable-ref.md) explicitly describes runtime ingestion of arbitrary user/third-party content—e.g., NSItemProvider.loadTransferable, FileRepresentation importing closures, and .dropDestination handlers that copy and parse files from other apps or sources—which the agent/app is expected to read/interpret and can change behavior or subsequent actions.