http-invoked-functions

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly registers and invokes external HTTP endpoints (notably calling out "third-party webhooks") via registerFunction/trigger, meaning the agent will fetch and process responses from untrusted third-party URLs as part of its workflow.