dioxus-stitch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs the agent to call [prefix]:get_screen to retrieve design JSON, use Bash to fetch raw HTML/Tailwind, and check screenshot.downloadUrl — all required steps that ingest external Stitch/design content (third‑party user-generated/untrusted) which the agent must parse and which directly drive generation and tooling decisions.