mcp-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md workflow explicitly requires using WebFetch/web search to load external pages (e.g., "https://modelcontextprotocol.io/sitemap.xml" and raw GitHub READMEs like https://raw.githubusercontent.com/modelcontextprotocol/.../README.md) and the Evaluation guide directs fetching documentation and web content as mandatory steps, so the agent will read untrusted public third‑party content that can influence tool selection and subsequent actions.