saloon-for-laravel

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly shows connectors calling external APIs (e.g., resolveBaseUrl() using config('services.acme.base_url') and $connector->send($request)) and then parsing/acting on responses (response->json()/body(), createDtoFromResponse(), paginator isLastPage(), handleRetry(), responseHandler), so untrusted third‑party API content is ingested and can materially influence control flow and actions.