spacetimedb-rust

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's "Procedures (Beta)" section explicitly states "HTTP allowed" and includes an example using fetch_from_url(&url) to ingest external data into the database, meaning it can fetch and process arbitrary untrusted third-party web content (URLs) that could influence subsequent behavior.