vercel-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly instructs the agent to fetch and access preview deployments using vercel curl (see references/monitoring-and-debugging.md and SKILL.md Step 4), which causes the agent to ingest arbitrary user-hosted web content from third-party preview deployments that could contain instructions influencing subsequent actions.