b2c-webservices

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill clearly calls and ingests external, potentially untrusted services and content (e.g., references/HTTP-SERVICES.md where parseResponse JSON-parses client.text and dynamicEndpointService uses svc.setURL(params.endpoint), and references/FTP-SERVICES.md where execute() downloads and processes SFTP file contents), so third-party content is read and can materially influence subsequent actions.