acc-create-psr15-middleware

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The templates clearly ingest untrusted client-supplied data (e.g., JsonBodyParserMiddleware reads and json-decodes request bodies, CorsMiddleware reads the Origin header, AuthenticationMiddleware reads the Authorization header, and other middleware access headers/cookies/server params), so the agent would read and act on arbitrary third-party/user-generated request content.