spark-python-data-source

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's core reader/writer patterns explicitly fetch and ingest data from arbitrary external URLs provided via options (e.g., YourReader.read uses requests.get(f"{self.url}?...") and YourWriter._send_batch/ write use requests.post to options["url"] in SKILL.md and referenced patterns), so untrusted third‑party API/web content is read and can influence partitioning, offsets, and processing logic.