tauri-v2

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill includes example commands that fetch and stream arbitrary remote URLs (e.g., fetch_data using reqwest::get(&url) in references/ipc-patterns.md and download_file/download examples that accept a url string from the frontend, plus the http plugin and remote URL capability examples), so it clearly ingests untrusted third-party web content provided at runtime.