dotnet-ado-build-test

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md instructs using Azure Artifacts feeds with upstream nuget.org (see "Upstream Sources" and "Selecting Feeds Directly" / nuget.config) so the pipeline agent will restore public NuGet packages (untrusted, user-published content) that are consumed during build and can execute MSBuild/tasks/scripts that materially influence build actions.