noteplan

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's documentation (references/plugin-development.md and references/templates.md) explicitly describes using fetch() and web.* template/web-service tags plus HTMLView-to-plugin bridges that fetch and ingest arbitrary HTTPS/web APIs and then parse/use that content to update notes or invoke plugin commands, so untrusted third-party data can materially influence agent actions.