erpnext-impl-customapp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill includes code that calls arbitrary external APIs (e.g., shipping_integration/api/tracking.py where get_tracking_info uses requests.get against settings.api_url and then parses/displays returned tracking events), which means the agent's workflow can ingest and render untrusted third‑party content from arbitrary URLs.