senior-frontend

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill includes a DataFetcher render-prop example in "React Patterns" that performs fetch(url) on an arbitrary URL and renders the returned data (and also shows rendering raw HTML scenarios in the Security section), which clearly ingests untrusted, user-provided third-party content that the agent/app would read and interpret.