114-java-maven-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to fetch and parse untrusted public content from Maven Central Search API (https://search.maven.org/solrsearch/select) and repository URLs (https://repo1.maven.org/maven2/{...}/maven-metadata.xml and POM/JAR URLs), and to read/interpret those responses/POMs as part of its workflow, which can materially influence coordinate resolution and subsequent actions.