fastapi-development

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's example code ingests untrusted, user-generated content (e.g., blog comments at /posts/{post_id}/comments, file uploads at /upload/, WebSocket chat messages at /ws/{client_id}, and external API fetches in the "Concurrent Operations" httpx example), so the agent would read and process arbitrary third-party input that could carry indirect prompt-injection.