swift-concurrency

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill makes network requests to arbitrary URLs (e.g., ImageCache.image(for url: URL) using URLSession.shared.data(from: url) and downloadLargeFile using URLSession.shared.bytes(from: url)), so it clearly ingests untrusted third-party content from public web URLs as part of its runtime workflow.