platform-docs-get

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.95). The skill’s required runtime path fetches public web pages (e.g., help.salesforce.com via Playwright in scripts/extract_help_salesforce.py and other Salesforce doc hosts via scripts/extract_salesforce_doc.py), then extracts readable article text (page.evaluate(...).text / document.body.innerText) into the agent’s LLM context—this is outsider-authored free text from the public web.