docyrus-app-dev-react

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's documentation explicitly instructs the agent to fetch external llms.txt endpoints from the public alpha-ui.docy.app site (see "Docyrus UI Guide Documentation" in references/preferred-components-catalog.md — "Fetch these llms.txt endpoints for detailed guidance"), meaning the agent will ingest and act on third‑party public website content that could influence its behavior.