syncfusion-react-accordion

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's Content Loading documentation (references/content-loading.md) includes multiple examples that fetch and POST to external/public URLs (e.g., https://jsonplaceholder.typicode.com/posts and numerous fetch('/api/...') examples) and render the returned (potentially HTML) content into accordion panels (content/header accepting HTML and templates), so untrusted third‑party, user-generated data is ingested and displayed as part of the component workflow — which could materially influence behavior if that content contains instructions or active HTML.