cia-data-integration

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's SKILL.md and example code explicitly fetch JSON exports from a public third‑party site (e.g., https://www.hack23.com/cia/api/export/${productName}.json), ingest and validate that data as part of its workflow, and use it to drive caching and automated actions (including committing updates), so untrusted external content can materially influence behavior.