deployment-automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill runs CLI commands and curl/fetch calls against arbitrary deployment and monitoring endpoints (e.g., scripts/health-check.sh and scripts/smoke-test.sh calling <BASE_URL>/health, workflows curling ${{ secrets.FRONTEND_URL }}/api/health and external metrics APIs like DATADOG/METRICS_API, and example edge code fetching external APIs), meaning it clearly ingests and interprets content from user-provided or public third‑party URLs which could be untrusted.