arcgis-advanced-layers

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill directly loads and interprets public OGC/web endpoints (e.g., WMSLayer url "https://ows.terrestris.de/osm/service", wfsUtils.getCapabilities("https://geobretagne.fr/geoserver/ows"), OGCFeatureLayer url "https://demo.ldproxy.net/vineyards", and CatalogLayer portalItem portal URLs) and uses returned capabilities/feature info to create and configure layers, so untrusted third-party content can materially influence the agent's actions.