eve-fullstack-app-design

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly describes browsing and searching mounted Google Drive content via Eve's Cloud FS and handling external event sources (e.g., Slack events, GitHub webhooks, doc.ingest triggers) in required workflow sections ("Cloud FS / Google Drive Storage" and "Event Triggers for Workflows"), meaning agents are expected to read untrusted user-generated third-party content that can drive agent actions.