meteoblue-weather

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly queries OpenStreetMap Nominatim and meteoblue endpoints (my.meteoblue.com images and basic-day JSON) and ingests those public third‑party responses (community-sourced geocoding and external forecast images/JSON) which the agent reads and uses to decide locations, fetch forecasts, and produce verdicts, so untrusted external content can materially influence its actions.