portainer-ce-2-39

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill documents and instructs use of endpoints that ingest and act on arbitrary external repository/URL content (e.g., POST /stacks/create/*/repository, POST /stacks/create/kubernetes/url, PUT /stacks/{id}/git/redeploy, and POST /gitops/repo/file/preview), so it can fetch untrusted public Git/URL content which may materially influence actions like deployments.