n8n-code-javascript

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's core documentation and examples (BUILTIN_FUNCTIONS.md and COMMON_PATTERNS.md / SKILL.md) explicitly instruct using $helpers.httpRequest and pattern code to fetch and process public user-generated sources (e.g., Hacker News, Reddit, RSS feeds), so the agent will read and act on untrusted third‑party content.