axiom-shipping

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs programmatic access to public, user-generated App Store reviews via the asc-mcp workflow (see SKILL.md and skills/app-store-connect-ref.md "MCP-Powered Access" listing reviews_list and reviews_create_response), so the agent is expected to fetch and act on untrusted third‑party content that could influence its actions.