validating-cors-policies

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md (Prerequisites and step 9) explicitly instructs the agent to use the WebFetch tool to issue preflight requests to live target URLs, so the agent will fetch and interpret arbitrary external HTTP responses (untrusted third‑party endpoints) and use those responses to drive findings and remediation actions.