alicloud-backup-bdrc

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow and scripts (scripts/list_openapi_meta_apis.py and references/sources.md) explicitly fetch OpenAPI metadata from the public endpoint https://api.aliyun.com/meta/v1/products/BDRC/... and instruct the agent to use those metadata docs to discover APIs and parameters, so untrusted third-party content can be read and influence subsequent API calls.