cloudflare-mcp-server

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's documentation and templates include handlers that fetch and ingest open web content (e.g., the "API Proxy MCP Server" example in references/stateful-servers.md which fetches Wikipedia summaries and the OAuth examples in references/oauth-providers.md that call provider userinfo/GitHub APIs), so the agent workflows clearly consume untrusted third‑party content that could influence behavior.