enonic-nextxp-integration

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required runtime workflow explicitly fetches and renders CMS content from the Enonic Guillotine GraphQL API (ENONIC_API / Guillotine) — see Step 4 in SKILL.md and references/nextxp-reference.md — and uses that rich-text/macro data to drive component selection and rendering, meaning untrusted/user-generated content from the CMS can be read and influence agent behavior.