geomaster

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and ingests public third‑party data as part of required workflows (e.g., SKILL.md and references/big-data.md show using pystac_client against "https://planetarycomputer.microsoft.com/api/stac/v1", Earth Engine .getInfo(), and references/data-sources.md shows Overpass API and Natural Earth URLs), and those runtime results are parsed and used to drive downstream processing, so untrusted/web‑sourced content can materially influence agent actions.