distributed-tracing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly instructs fetching and applying a public GitHub manifest (kubectl create -f https://github.com/jaegertracing/jaeger-operator/releases/download/v1.51.0/jaeger-operator.yaml) as part of the Jaeger setup, which pulls untrusted third‑party content from the open web that can change runtime behavior and thus influence subsequent actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill instructs fetching and applying a remote Kubernetes manifest at runtime using kubectl from https://github.com/jaegertracing/jaeger-operator/releases/download/v1.51.0/jaeger-operator.yaml, which will execute remote configuration/code on the cluster and is presented as a required setup step.