create-mcp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's core workflow explicitly builds MCP servers that connect to external services and APIs (e.g., Google Calendar, Gmail, Slack, Todoist, "Any API") and instructs the agent to call those APIs and ingest their data for reasoning and actions (see Phase 1 service examples and Phase 3 "Create the server file"), so untrusted third-party content can be read and materially influence subsequent tool use.