alicloud-ai-contactcenter-ai

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow and scripts (scripts/list_openapi_meta_apis.py and references/sources.md) explicitly fetch and parse OpenAPI metadata from the public URL https://api.aliyun.com/meta/v1/products/... which the agent must read and use to drive API calls, exposing it to untrusted third-party content that could influence behavior.