geoip

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill's runtime workflow explicitly fetches and parses data from public third-party endpoints (api.cloudflare.com in scripts/cloudflare-geoip.mjs and the MaxMind demo page/API in scripts/maxmind-geoip.mjs as documented in SKILL.md), and those untrusted JSON/page results are read and merged into the agent's decision/output, so upstream content could indirectly influence behavior.