ArgoRollouts

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's Analysis/Metric providers (notably the Web provider's url "http://{{args.host}}/health" and the generic Prometheus/provider address fields) let Rollouts query arbitrary HTTP endpoints or external metric backends whose responses are evaluated by AnalysisRuns, so untrusted or user-controlled public URLs could be fetched and their content interpreted as part of the workflow.