jq-json-processing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly shows ingesting JSON from open web sources (e.g., "curl -s https://api.example.com/data | jq '.results'" and "cat urls.txt | xargs -I {} curl -s {} | jq '.data'"), so the agent is expected to read untrusted, public third‑party content as part of its workflow which could influence downstream processing/actions.