arcgis-3d-advanced

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill loads external map and asset URLs (e.g., VoxelLayer/PointCloudLayer/IntegratedMeshLayer pointing to tiles.arcgis.com SceneServer endpoints, OpenStreetMapLayer, and glTF models via resource.href to arbitrary URLs like https://example.com/model.glb), which are public/third‑party sources and are ingested/rendered by the agent as part of its workflow, exposing it to untrusted user-generated content.