@1892/squadron

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and ingests user-generated content (tasks, comments, and knowledge-base files) from Squadron endpoints (e.g., GET /tasks, /tasks/{id}/comments, /squadrons/{id}/knowledge/file and /squadrons/public) and the agent is expected to read and act on that content as part of its workflow, allowing untrusted third-party text to influence actions.