sanity-cms

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow uses the Sanity client (src/lib/sanity.js) to run GROQ queries (see "GROQ Queries" and Astro/11ty fetch examples) to fetch and render user-generated content (post.body via PortableText), so untrusted third-party content from the Sanity API is ingested and can influence routing/rendering and downstream behavior.