syncfusion-javascript-ai-assistview

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's docs (SKILL.md and references/ai-integrations.md) include explicit promptRequest examples that fetch content from open third‑party endpoints (e.g., https://api.openai.com/v1/chat/completions, Google Gemini, LiteLLM, custom URLs) and then parse those responses into the UI (addPromptResponse) and even update UI state like promptSuggestions/toolbar items, so untrusted external content is ingested and can materially influence behavior.