function-creator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The examples include an action (generateTaskSuggestion) that calls the OpenAI API and directly reads completion.choices[0].message.content, so the skill clearly ingests and uses untrusted third-party content from an external AI service.