nushell-plugin-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill includes an "External API Call" example (references/examples.md) that calls reqwest::blocking::get(&url) on a user-supplied URL, so it clearly fetches and parses arbitrary public web content (untrusted third-party content) as part of its workflow.