typescript-mcp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill includes tools that fetch and ingest external web content (for example, references/tool-patterns.md's "fetch-large-file" reads an arbitrary URL provided as input and the "fetch-weather" external-API wrapper calls OpenWeatherMap), so the agent will read/interpret untrusted third-party content supplied via tool arguments.