axiom-swiftui-26-ref

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill explicitly documents embedding and loading arbitrary web content via WebView/WebPage (e.g., WebView(url: articleURL), page.load(URLRequest(url: ...)), JavaScript execution, and in‑app browsing with openURL(..., prefersInApp: true)), which fetches and exposes untrusted third‑party web content that the agent would read/observe as part of its workflow.