processon-diagramgen

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill calls the external ProcessOn MCP/API (https://smart.processon.com/v1/api/generate_diagram) and the provided script (scripts/processon_api_client.py) ingests and processes returned "content" (text/DSL and remote_image_urls) from that third‑party service and requires the assistant to read/format that returned text/DSL into its final responses (per SKILL.md), so untrusted third‑party content could influence agent output and behavior.