http_client

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly shows using Client.get and HttpRequestBuilder.url to fetch arbitrary URLs and then reading/interpreting resp.body (see sections 2, 4 and 6), which ingests untrusted public web content that could carry instructions influencing subsequent actions.