aliyun-pts-manage

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow and scripts (notably scripts/list_openapi_meta_apis.py and the SKILL.md "API Discovery" step) explicitly fetch and parse the public metadata URL https://api.aliyun.com/meta/v1/products/PTS/versions/2020-10-20/api-docs.json, and that externally-sourced API metadata is read and used to determine which APIs/parameters to call, so third-party content can materially influence agent actions.