ambler-util

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly requires creating utilities that import and call external npm/jsr packages and APIs (e.g., the utils/ollama_chat.ts example using "npm:ollama" and the fetchWeather example calling OpenWeather), meaning the agent will read and act on untrusted third‑party responses as part of its runtime workflow.