otel-sdk-versions

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md workflow (steps 4–5) explicitly directs the agent to consult external Release Source and Setup Docs links (e.g., GitHub releases, npm, PyPI, raw.githubusercontent.com) and to fall back to official release sources when the bundled index is incomplete, so the agent will fetch and interpret untrusted public web content that can influence version/decision-making.