rails-active-storage

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly shows ingesting untrusted third-party content — e.g., "Attach from URL" using URI.open("https://example.com/image.jpg") in attaching-files.md, direct user uploads in direct-uploads.md, and multiple places where blobs are downloaded/processed (file-operations.md, scripts using blob.download and system tools like ffmpeg) — so the agent would read and process arbitrary external/user-provided content.