nextjs-server-components

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill includes examples that fetch and render external or user-provided content (e.g., getPosts fetching posts from an API and rendering post.title/post.content, MarkdownPage using marked(content) to render arbitrary markdown, and OptimizedImage fetching an arbitrary src URL), so it clearly ingests and displays untrusted third-party/user-generated content as part of its workflow.