airflow-dag-patterns

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's implementation-playbook (sub-skills/implementation-playbook.md) includes runtime patterns that fetch and ingest external/untrusted content—e.g., S3KeySensor and reading s3:// CSVs, a custom sensor using requests.get('https://api.example.com/health')—and those results are used to drive sensors/branches and downstream task behavior, so third-party content can materially influence actions.