openai-api

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly accepts and processes arbitrary external media (e.g., the "Vision (GPT-4o)" section's "Image via URL" and "Multiple Images" examples where the model ingests image_url pointing to public URLs), meaning the agent will fetch and interpret untrusted third-party content.