flights

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill explicitly fetches and scrapes live public FlightAware pages (scripts/flights.py: get_flightaware_status and search_flights_flightaware use https://www.flightaware.com/...) and queries the public AviationStack API (get_aviationstack_status -> http://api.aviationstack.com), so it ingests untrusted third‑party web content that is parsed and used to determine flight status and drive outputs.