dotnet-ado-unique

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly describes environment checks that call external endpoints—e.g., the "Invoke Azure Function" pre-deploy check (https://myvalidation.azurewebsites.net/api/pre-deploy) and "Invoke REST API" gates—whose responses are used to approve or reject deployments, so untrusted third-party endpoints can directly influence pipeline actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill documents an environment approval check that invokes the Azure Function URL https://myvalidation.azurewebsites.net/api/pre-deploy at pipeline runtime with the pipeline context, letting remote code and its HTTP response directly control whether the deployment proceeds.