jfrog-onemodel

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and reads the OneModel supergraph schema from the configured JFROG_URL (GET $JFROG_URL/onemodel/api/v1/supergraph/schema in Step 2) and instructs the agent to read schema descriptions and use them to construct and validate GraphQL queries, so externally-hosted schema content can directly influence query construction and tool actions.