sap-btp-business-application-studio

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill's required workflow explicitly instructs interacting with untrusted public third‑party sources — e.g., cloning arbitrary Git repos (references/git-operations.md), installing Yeoman generators/npm packages and Open VSX extensions (references/development-workflow.md and service-center-and-tools.md), and consuming Service Center/API Hub OData services — which the agent/user is expected to fetch, read, and act on as part of normal operations, allowing external content to influence tool usage and next actions.