engflow-artifacts

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and parses build artifacts, test logs, and outputs.zip from EngFlow (mesolite.cluster.engflow.com) via GetTarget/CAST API calls and curl (see SKILL.md and functions like get_target, download_blob, parse_invocation_url), which are untrusted/user-generated third‑party artifacts the agent is expected to read and that could materially influence subsequent actions.