devtu-auto-discover-apis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly performs web searches and scrapes public API documentation (Phase 1: "Search web for APIs" and "Scrape API documentation for endpoints and schemas" in SKILL.md and python_implementation._search_apis), ingesting untrusted, user-controlled third‑party content which the agent parses and uses to generate tools and drive subsequent actions—so third‑party content can materially influence tool behavior.