run-helix-tests

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's runtime scripts (scripts/Get-HelixJobStatus.ps1 and scripts/Get-HelixWorkItemLog.ps1) call the public Helix API (https://helix.dot.net/api/2019-06-17) and ingest job/work-item details and console logs (test/user-generated output) which the agent reads and uses to determine status and failures, so untrusted third-party content could materially influence behavior.