langchain4j-tool-function-calling-patterns

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's instructions and examples (SKILL.md and references/examples.md) explicitly show tools that call external APIs and fetch external data (e.g., ApiTools.getStockPrice using WebClient in SKILL.md and DataService/externalApiService.fetchData in references/examples.md), so the agent can ingest untrusted third‑party responses and use them to influence tool selection and next actions.