tinyurl

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly instructs the agent to list/run actions and to proxy arbitrary requests to the TinyURL API (see "Running actions" and "Proxy requests"), so the agent will ingest and act on untrusted third‑party API responses (user-created URLs/analytics) that could influence subsequent decisions or tool use.