bids

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.85). The skill’s runtime workflow can fetch and ingest outsider-authored free text from the public web via scripts/update_schema.py, which downloads bids-specification.readthedocs.io/.../schema.json and bids-website/.../beps.yml and writes them into references/ (then the agent may read/use that text).