data-import

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs loading data from external sources (e.g., Step 1.4 "Create REST Data Source" with connection_url https://api.external-system.com/v1/records, plus file/JDBC imports) into import set rows that the agent/transforms/scripts read and act on (create/update records, run post-processing), so untrusted third-party content can materially influence agent behavior.