add-cloud-flow

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's scripts (scripts/list-cloud-flows.js) call the Power Automate Flow RP API to ingest flow display names and descriptions (user-supplied text), and the Phase 2/3 workflow explicitly reads and interprets those fields to match intent, choose flows, assign roles, and generate client-side code — so untrusted, user-generated flow metadata can materially influence decisions and actions.