terraform-provider-upgrade

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow explicitly calls MCP/documentation APIs (e.g., mcp_terraform_search_providers, mcp_terraform_get_provider_details / getProviderDocs) and links to public Terraform Registry/GitHub upgrade guides to fetch and parse third‑party upgrade guide and provider documentation, and then uses that content to drive code migrations and moved-block state changes—allowing external webpage instructions to materially influence the agent's actions.