docyrus-cli-app

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly downloads and ingests tenant-provided OpenAPI specs via "docyrus discover api" (stored at ~/docyrus/tenans//openapi.json) and fetches tenant data/endpoints via commands like "docyrus ds list" and "docyrus curl", meaning it reads untrusted tenant/user-generated content that can materially influence subsequent tool actions.