proofkit-fmodata

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill connects to an arbitrary FileMaker server URL (via FM_SERVER / FMServerConnection and the @proofkit/typegen flows including npx @proofkit/typegen generate or ui) and ingests OData/DB schemas and records from that third‑party server, meaning it will read and interpret untrusted user-generated content from arbitrary URLs.