revet-auth

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill includes IdentityProvider.discoveryEndpoint and a WELL_KNOWN discovery method and references fetching .well-known/openid-configuration and jwks_uri for federation, which means it would retrieve and parse metadata and JWKS from arbitrary external IdP URLs (public, untrusted third-party content) as part of its workflow.