axiom-transferable-ref

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs accepting and importing arbitrary user/third-party content (e.g., FileRepresentation importing and .dropDestination in Part 2/Part 3, and NSItemProvider.loadTransferable in Part 5) — untrusted files/URLs from other apps/users are read and interpreted as part of the workflow, which could allow indirect prompt-like instructions to influence behavior.