mcp-integration

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly configures SSE/HTTP/WS MCP servers (e.g., https://mcp.asana.com/sse, https://api.example.com/mcp) and agent workflows (see "Agent: data-analyzer.md" and tool-usage instructions) that fetch and interpret third-party service data and then take follow-up actions, meaning untrusted external content can influence agent behavior.