azure-servicebus-py

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's runtime workflow clearly receives and processes messages from Azure Service Bus queues/topics/subscriptions (see "Receive Messages", "Dead-Letter Queue", and subscription receiver examples in SKILL.md), which are arbitrary user-produced messages that the agent is expected to read/interpret and could therefore carry instructions influencing processing and subsequent actions.