docker-mcp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow and examples (e.g., "Example 4: Multi-Server Workflow" and the "Web & APIs" / "apify" entries in the catalog) explicitly instruct adding web-scraping/browser-rendering MCP servers to fetch content from arbitrary websites/APIs and then read/use those results in-conversation, exposing the agent to untrusted third-party content that could carry indirect prompt-injection.