frappe-syntax-doctypes

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's Virtual DocType guidance (SKILL.md "Virtual DocType" section and references/examples.md Virtual DocType example) explicitly requires and demonstrates fetching data from external APIs (e.g., call_external_api("/records")), which means the agent would ingest untrusted third-party content as part of its runtime workflow and that content could influence subsequent actions.