sap-btp-build-work-zone-advanced

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's manifests and docs show runtime fetching and execution from external, potentially arbitrary sources—e.g., card manifests request data via configured destinations (templates/card-manifest.json / references/ui-integration-cards.md), Widget Builder supports embedding external content, and chatbot/webhook payloads can trigger perform_actions (references/chatbots.md and references/api-reference.md)—so the agent will read and act on untrusted third‑party content.