Framer Expert

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly uses the Framer MCP server to "list and access Framer projects" and "retrieve CMS collections and content," so the agent will fetch and analyze user-authored/project CMS content (potentially public or untrusted) as part of its workflow.