moai-security-ssrf

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's core examples and implementation (SKILL.md SecureClient and Python validator, examples.md middleware/ssrf-protection.js and clients/ssrf-safe-http-client.js) explicitly accept user-provided URLs (proxy_url) and perform network fetches to arbitrary external sites (plus third-party threat-intel queries to https://api.context7.ai), meaning untrusted public web content is ingested and can influence request handling and follow-up decisions.