databricks-reference-architecture

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required "Step 1: Initialize Project" explicitly instructs cloning a public GitHub repository (https://github.com/databricks/bundle-examples.git), meaning the agent would fetch and consume untrusted, user-generated third-party content that could materially influence configuration and subsequent actions.