data-engineering-storage-remote-access-libraries-fsspec

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). Yes — SKILL.md explicitly shows runtime usage that opens and reads remote, potentially untrusted sources (e.g., fsspec.open("https://example.com/data.csv.gz") and s3_fs.open("s3://...") / s3_fs.ls in the Basic Usage and Protocol Chaining sections), so the agent is expected to fetch and interpret third‑party web/storage content that could influence its actions.