deno-scripting

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill includes a fetchData(url) helper under "HTTP Requests" that uses fetch(url) (and the run instructions allow --allow-net), so scripts produced by this skill can fetch and parse arbitrary public URLs/third‑party API responses which are untrusted and will be read/processed by the agent.