cli-anything-wiremock

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly supports recording/proxying an arbitrary backend via "record start " and returning captured stubs on "record stop" (see the "Record a real backend" section and examples), so the agent will ingest and act on untrusted third-party HTTP responses from arbitrary public URLs, which could contain instructions that influence subsequent tool use.