expo-gaode-map-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md and resources/search-api.md show the skill calling Gaode/Amap native search APIs (e.g., searchPOI, getInputTips, getPoiDetail, reGeocode) which fetch public third‑party POI/input‑tip/business data (including photos and ratings) that the agent is expected to read and that can materially influence subsequent actions, so untrusted external content is ingested at runtime.