n8n-syntax-expressions

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's main documentation (SKILL.md) explicitly describes using the HTTP Request node and the $response.body / $("HTTP Request").all() outputs and shows JMESPath queries and expressions against those responses, which means the agent will ingest and act on arbitrary HTTP response content from third-party URLs as part of its workflow.