macos-menubar-tuist-app

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The workflow explicitly tells the agent to "Use curl to verify endpoint shape, auth requirements, and pagination behavior" (Workflow step 2), which requires fetching and interpreting responses from external/untrusted HTTP endpoints that can materially influence decoding, client/store logic, and subsequent actions.