azure-auth

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Cloudflare Workers JWT validation clearly fetches OpenID configuration and JWKS from the public Microsoft endpoint (see getJWKS calling https://login.microsoftonline.com/{tenant}/v2.0/.well-known/openid-configuration and using the returned jwks_uri in SKILL.md and templates/workers-jwt-validation.ts), and that remote content is parsed and used to accept/deny tokens so it can directly influence authorization/tool behavior.