ionic-deep-links

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests and parses external deep-link URLs from untrusted sources (see references/custom-scheme.md and references/routing.md where App.addListener('appUrlOpen') and getLaunchUrl() are used to parse https://yourapp.com/... and query params like tokens) and then routes/acts on them, so those third‑party URLs can materially influence app behavior.