app-clips

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's "Invocation URL Handling" and "Associated domains" sections show the App Clip ingesting NSUserActivityTypeBrowsingWeb invocation URLs and AASA-hosted metadata (public web URLs and query/path parameters) and using those values to drive UI, routing, and location confirmation, so untrusted third‑party content from arbitrary URLs can materially affect behavior.