phoenix-duskmoon-ui

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's component reference (references/components.md) documents dm_markdown with a src attribute ("URL to fetch markdown") which clearly causes the library to fetch and render markdown from arbitrary public URLs, meaning the agent could ingest untrusted, user-provided web content as part of its workflow.