swift-package-manager

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The documentation explicitly instructs the package manager to download and resolve remote dependencies from arbitrary public URLs (e.g., "swift package add-dependency https://github.com/apple/example-package-playingcard" and notes that "swift build" / "swift package resolve" fetches packages from GitHub and registries), so the agent workflow consumes untrusted, third‑party content from the open web.