laravel-dtos

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's transformers explicitly ingest external, untrusted payloads (e.g., Stripe webhooks and PayPal orders in references/dto-transformers.md via fromStripePaymentIntent($webhook['data']) and fromPayPalOrder($order), plus controller/request inputs and preserved 'rawData'), so the agent would read and interpret third-party/user-supplied content as part of its workflow.