mcp-server-development

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly defines tools that query public third‑party sources—e.g., search_riksdag_documents (Riksdag API) and GitHub MCP integrations for issues/PRs—so the agent will fetch and interpret untrusted/user-generated web content as part of its workflow.