commerce-b2b-open-code-components-integrate

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.85). The skill clones and then reads/ingests the open-source repo’s file contents (e.g., force-app/main/default/sfdc_cms__lwc/* and sfdc_cms__label/*) from the public GitHub URL at runtime, which is outsider-authored free text/code that becomes LLM-readable via local file reading/copying.