state-machines

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's "Fetch Machine Pattern" in SKILL.md defines an actor fetchData that calls fetch(input.url) and parses response.json, meaning the machine will fetch and ingest arbitrary third-party URLs provided at runtime (untrusted content) and incorporate that data into its context and behavior.