qveris

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's CLI explicitly calls the QVeris API (BASE_URL "https://qveris.ai/api/v1" in scripts/qveris_tool.py) to search for tools and ingest tool descriptions, example parameters, and execution results from third-party sources, which the workflow (SKILL.md and the script) uses to select and execute tools and thus can materially influence subsequent actions.