import-dashboards

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md workflow explicitly fetches dashboard resources from a target Grafana instance via the K8s API ("Fetches resource via K8s API (/apis endpoint)") and runs a converter that ingests live dashboard JSON (user-generated/untrusted) to produce Go code as part of the required import workflow, so untrusted third‑party content is read and used to drive outputs/actions.