carto-find-spatial-data

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly calls out and requires using "carto do search" and "carto do get" against the CARTO Data Observatory (a catalog of external third‑party providers such as OSM, Foursquare, Mastercard) — per SKILL.md and references/data-observatory.md — and ingests that external dataset metadata/content to decide subscriptions and downstream actions, so untrusted third‑party content can materially influence agent behavior.