syncfusion-javascript-dropdowntree

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill documentation includes explicit, required examples and instructions (see references/data-binding.md and SKILL.md) that configure remote DataManager URLs (e.g., https://services.odata.org/V4/Northwind..., https://api.example.com/..., api/locations) and lazy-loading of remote JSON, meaning the component is expected to fetch and interpret untrusted public web data at runtime which can materially influence control behavior and subsequent actions.