flutter-networking

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's SKILL.md and reference files include concrete code that fetches public URLs (e.g., SKILL.md Quick Start and references/http-basics.md using https://jsonplaceholder.typicode.com and other external endpoints, and references/websockets.md using wss://echo.websocket.events) and explicitly parses and acts on those responses (JSON parsing, error handling, token refresh), which shows the agent would read untrusted third-party content that can influence behavior.