arcgis-time-animation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill directly loads and consumes public third-party map services (e.g., FeatureLayer/ImageryLayer/MapImageLayer/StreamLayer URLs like "https://services.arcgis.com/.../FeatureServer/0") and then reads their timeInfo and queryFeature results (e.g., timeSlider.fullTimeExtent = layer.timeInfo.fullTimeExtent; featureLayer.queryFeatures(...); timeSlider.watch(...) code) to configure widgets and drive actions, so untrusted external content can materially influence agent behavior.