backend-engineer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill directly reads and reacts to user-provided data from a third-party Supabase backend—e.g., database queries like getProducts/getProduct, real-time subscriptions via subscribeToProducts, and storage public URLs returned by uploadFile/getPublicUrl—which can contain untrusted, user-generated content.