cloudflare-cron-triggers

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's scheduled-handler examples explicitly fetch and ingest public third-party content as part of runtime workflows (e.g., fetch('https://api.example.com/v1/data') in Data Collection, the OpenWeatherMap calls in Weather Data Collection, and cache-warming fetches to 'https://example.com' in common-patterns), and those responses are parsed and used to drive actions (DB writes, queue sends, workflow triggers, alerts), so untrusted external content could materially influence behavior.