building-emdash-site

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's required workflow explicitly ingests and renders user-generated CMS content (getEmDashCollection/getEmDashEntry, PortableText, Comments) and also downloads external media via seed $media URLs (see references/querying-and-rendering.md and references/schema-and-seed.md), so untrusted third-party content is fetched and interpreted as part of normal page-building and plugin injection flows.