garchi-render-content

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill fetches and renders content from the public Garchi CMS APIs (base URL https://garchi.co.uk) — e.g., getPage/getPost/garchi.dataItem.* and Review/Headless/getAsset calls — which return user-generated pages, data items, reviews, and assets that the agent reads and renders, exposing it to untrusted third-party content that could carry indirect prompt-injection payloads.