excel-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md and references/cli-commands.md explicitly document Power Query commands (powerquery evaluate/create/refresh) and note "TEXT/WEB/CSV: Use powerquery instead," meaning the CLI is expected to fetch and load arbitrary public web/CSV sources (via M code) whose returned data the agent will inspect and act on, creating a clear path for untrusted third‑party content to influence the agent's decisions.