axiom-app-store-connect-ref

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md requires the agent to access App Store Connect/TestFlight data (e.g., “TestFlight Feedback” and the asc-mcp endpoints like reviews_list, betaFeedback, and viewing feedback entries) which includes user-generated/app-review content that the agent is expected to read and use for triage/responding, so untrusted third-party text could influence decisions.