azure-eventgrid-java

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md shows runtime code that receives and parses external Event Grid messages (see "Event Grid Namespaces (MQTT/Pull) — Receive from Namespace Topic" using EventGridReceiverClient.receive and the "Receiving Events" examples that parse webhook/CloudEvent JSON), meaning the agent would ingest untrusted, third‑party event payloads and could make actionable decisions (acknowledge/reject) based on that content.