devassure

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's core workflow requires the DevAssure AI agent to "Open the application url" (test_data.yaml / core workflow and test steps in SKILL.md and references/cli-reference.md) and interpret content in the browser (e.g., verifying dashboard text, conditional actions in agent_instructions.yaml), meaning it will fetch and act on arbitrary public/untrusted web pages specified by users, which can materially influence agent actions.