framer-plugins

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's docs and required workflow (references/patterns.md and SKILL.md) explicitly show fetching and ingesting external data (e.g., OAuth fetch to https://oauth.fetch.tools/my-plugin/authorize, API key validation fetches, RSS/Airtable/Google Sheets/Notion data sources) and then using that untrusted, user-generated content to drive sync logic and ManagedCollection operations, so third-party content is read and can materially change tool behavior.