aliyun-aicontent-generate

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and ingests a public third-party API docs URL (see scripts/list_openapi_meta_apis.py and references/sources.md which pull https://api.aliyun.com/.../api-docs.json) as part of its required metadata-discovery workflow, so external untrusted content is read and can influence subsequent tool use and decisions.