dotnet-mixed-reality

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's references (references/examples.md) show runtime consumption of untrusted third‑party content — e.g., RemoteRenderingManager.LoadModelAsync(modelSasUrl) which loads models from arbitrary SAS URLs and QRCodeTracker which reads QR code Data (code.Data) from the environment — and those inputs are explicitly used to drive actions (loading/placing content, creating anchors), so untrusted content can materially influence behavior.