syncfusion-react-multiselect

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's documentation explicitly instructs using remote DataManager sources (e.g., references/data-binding.md and references/filtering.md) with public URLs like https://services.odata.org/... and https://services.syncfusion.com/... and shows handling/filtering of that remote data (args.updateData, filtering event), which means the component will fetch and interpret untrusted third‑party content as part of its runtime workflow.