nocobase-workflow-manage

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to fetch and inspect runtime data from the target NocoBase instance—e.g., "List executions" / workflow executions get (append jobs) and "Get full job detail" via workflow jobs get to "inspect result for the error message or output"—which are user-generated/untrusted execution and job payloads that the agent must read and that can materially influence subsequent CLI/API actions (create/update/execute workflows and nodes).