tauri-impl-multi-window

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's documentation explicitly allows and instructs creating webview windows that load external URLs (see SKILL.md "ALWAYS use WebviewUrl::App() for local pages and WebviewUrl::External() for external URLs" and references/methods.md WebviewUrl::External), and the webview APIs (initialization_script, on_navigation, emit/listen) show the app will load and execute/interpret third-party web content that can drive events and calls, so untrusted web pages could materially influence runtime behavior.