fusion-developer-portal

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's App initialization lifecycle (see references/portal-architecture.md and Step 4 in SKILL.md) explicitly fetches app manifests via service discovery and imports remote app JS bundles (asset import / App Proxy), meaning it loads and executes untrusted third‑party content that can materially influence runtime behavior.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The portal runtime fetches manifests and remote JavaScript app bundles via the service discovery endpoint (configured by FUSION_SPA_SERVICE_DISCOVERY_URL), and those fetched bundles are executed by the portal (App Proxy fetching JS bundles), so this runtime external endpoint can cause execution of remote code.