freshworks-app-dev-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow (SKILL.md and the template READMEs) explicitly instructs invoking external request templates (config/requests.json) and using web search/OAuth providers (e.g., "Use web search for external APIs", oauth-skeleton, hybrid/server request templates) which fetch and ingest content from arbitrary third‑party hosts, so untrusted external responses can influence runtime behavior.