stackshare

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's "Proxy requests" instructions show the agent can fetch data from the public StackShare API via Membrane (and the skill is explicitly for interacting with StackShare stacks/tools/lists, which are user-generated), and those responses are meant to be read and used to choose actions, so untrusted third-party content could influence behavior.