PocketBase Hooks

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md explicitly documents fetching arbitrary external URLs via $http.send and $filesystem.fileFromURL (e.g., https://api.example.com, fileFromURL examples), and handlers are shown reading res.json/res.body and using fetched files/HTTP responses to modify records or trigger webhooks, so untrusted third‑party content can be ingested and materially influence behavior.