fastapi-api-patterns

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill includes runtime endpoints that ingest and read arbitrary user-generated content—e.g., examples/chat_api.py (/chat/messages, list/search endpoints) and examples/memory_endpoints.py (/memory/contexts, /contexts/search)—so the agent will consume untrusted third-party/user-provided content as part of its workflow.