model-keys

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The scripts call an external API (default https://new.fortao.cn, and any arbitrary endpoint via the --url flag) using apiRequest and parse JSON fields such as "key" and "allowed_models" which are consumed by the workflow (e.g., printed/used when creating/listing keys), so untrusted responses from public third-party servers could materially influence subsequent actions.