pp-weather-goat

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and acts on public third-party weather data from Open‑Meteo and the NWS (see SKILL.md "Weather CLI powered by Open‑Meteo ... + NWS" and commands like alerts, watch, breathe, and forecast), and the agent reads and uses that external content to produce activity verdicts and drive follow-up behavior, so untrusted public data could indirectly inject instructions affecting decisions.