wow-api-widget

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). SKILL.md's "How to Use This Skill" step 4 explicitly instructs the user/agent to "use the source links for exhaustive method lists" (e.g., https://warcraft.wiki.gg/...), which are public wiki pages (user-curated/untrusted third‑party content) that the skill expects to read and that could materially influence subsequent decisions or tool behavior.