dotnet-cli-architecture

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md service-layer example (Services/SyncService.cs) calls HttpClient.GetFromJsonAsync(source) using a user-supplied --source URL, so the skill clearly fetches and ingests arbitrary third-party web content that can influence runtime behavior.