bugzilla

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill calls the public Bugzilla REST API (e.g., GET /rest/bug/{id} and /rest/bug/{id}/comment against https://bugzilla.mozilla.org/rest) to fetch bug reports and user comments—clearly untrusted, user-generated content that the agent reads/prints and could use to decide or drive follow-up actions (create/update/comment), enabling indirect prompt injection.