azure-storage

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill allows the agent to list and download blobs (azure__storage: storage_blob_list / storage_blob_get and the CLI az storage blob download), which lets it fetch and read arbitrary content from Azure Storage accounts that may be untrusted or user‑generated.