executive-dashboard-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly accepts and requests external data sources such as Google Sheets links and JSON/API responses (and asks users to "request the data files or links"), which means the agent will fetch and read untrusted, potentially user-generated content from public third-party locations.