terraform

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The terraform-test SKILL.md explicitly permits and demonstrates pulling and testing public Terraform Registry modules (e.g., module { source = "terraform-aws-modules/vpc/aws" }) so the agent may fetch and execute third‑party, community-provided module code during test/run workflows, exposing it to untrusted external content that can influence actions.