supabase

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required runtime (scripts/supabase.sh and SKILL.md) issues REST/RPC calls to a user-supplied SUPABASE_URL (cmd_select, cmd_query, cmd_vector_search, cmd_rpc) and returns table rows and document content/metadata (e.g., vector-search calls match_ which returns content), so arbitrary/untrusted user-generated data from third-party/public databases can be read and used to influence agent actions.