mcp-server-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md templates explicitly define tools/resources that fetch public, user-generated content (e.g., the TypeScript "search_issues" tool calling https://api.github.com/search/issues and the "repo-readme" resource fetching a repo README from the GitHub API), which the agent will read and act on as part of its workflow, allowing third-party content to influence decisions and tool use.