flowio

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly parses and displays contents of user-supplied FCS files (e.g., FlowData('sample.fcs') with flow.text, flow.analysis, batch processing of files under Path('data/'), and the "Web Applications" note about processing FCS uploads), which means it ingests untrusted, user-generated third-party content that the agent will read and interpret.