jetbrains-marketplace

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill uses the Membrane connector "jetbrains-marketplace" (membrane connect --connectorKey jetbrains-marketplace and subsequent membrane action list/run calls) to fetch JetBrains Marketplace data (e.g., plugin metadata and user reviews), which is public, user-generated content the agent is expected to read and act on as part of its workflow, so untrusted third-party content can influence its decisions and actions.