hydro-plugin-services

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's OAuth provider example clearly fetches and ingests user data from third-party endpoints (e.g., exchanging a code at https://myprovider.com/oauth/token and fetching profile data from https://api.myprovider.com/user), which is untrusted user-generated content the agent reads and uses to create or modify accounts and decide registration behavior.