stack-trace-decoder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly asks for and parses arbitrary user-provided traces and source maps (see the "AI-Assisted Decoding" section with "[paste stack trace]" and functions like decodeMinifiedTrace(trace, sourceMap)), so the agent will ingest untrusted third-party/user-generated content and interpret it as part of its workflow.