cloudflare-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly includes examples—most notably "Example 2: AI-Powered Content Moderation" and the semantic search/indexing flows—that accept arbitrary user-submitted content via POST/uploads and run moderation/embedding/indexing which directly influence blocking, storage, and downstream actions, so untrusted third-party input is ingested and can alter agent behavior.