tauri-v2

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md includes a Channel Streaming Pattern and examples that accept and fetch arbitrary URLs (e.g., the download(url: String) example in "Channel Streaming Pattern" and invoke('download', { url: 'https://...' }), and the references/capabilities-reference.md shows "Remote URL Access" and references/ipc-patterns.md shows an async fetch_data(url) using reqwest::get, which together show the runtime can ingest and act on untrusted public URLs.