lime-echart

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's examples explicitly fetch and ingest data from open third‑party APIs (e.g., examples/advanced/dynamic-data.md and templates/advanced-chart.md use uni.request to 'https://api.example.com/chart-data' and then assign res.data into chart options), so untrusted external/user-provided content would be read and interpreted at runtime.