aliyun-ice-manage

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's workflow and scripts explicitly fetch and consume external OpenAPI metadata from the public URL https://api.aliyun.com/meta/v1/products/ice/versions/2020-11-09/api-docs.json (see SKILL.md "API Discovery" and scripts/list_openapi_meta_apis.py), and that external content is used to discover APIs and parameters which can directly influence which API calls and parameters the agent uses.