arcgis-advanced-layers

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow explicitly fetches and ingests public third-party data (e.g., wfsUtils.getCapabilities("https://geobretagne.fr/geoserver/ows") for WFS discovery, KMLLayer loading from the USGS feed, OGCFeatureLayer from demo.ldproxy.net, CatalogLayer portal queries, and Media/Video layers from external URLs) and then parses/uses that content to create layers and drive actions, which could allow untrusted content to influence behavior.