axiom-background-processing-ref

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md includes explicit runtime patterns that fetch and process arbitrary third‑party URLs (see "Part 6: Background URLSession" with downloadFile(from url: URL) and related handlers, and "BGAppRefreshTask" using fetchLatestContentOperation), so the agent/app is expected to ingest untrusted external content that could influence subsequent processing.