alibabacloud-emas-apm-query

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow (SKILL.md Core Workflow and Stage B/C, plus references/get-error.md and get-errors.md) explicitly calls the aliyun emas-appmonitor APIs (get-issues/get-issue/get-errors/get-error) to fetch user-generated crash samples, backtraces, EventLog and business logs from the EMAS backend and then reads and interprets those fields to map stacks to source and propose fixes, so untrusted third-party content can directly influence agent decisions.