cap-connector-dev

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md "Data Processing Pattern" explicitly shows the connector performing httprequest.get calls to external endpoints (e.g., https://api.example.com/data1), parsing arbitrary JSON (responseData.results and responseData.paging.next.link) and using those fields to drive pagination and processing, meaning untrusted third‑party API content is fetched and can materially influence the agent's subsequent actions.