add-dataverse

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill directly queries a user-provided Dataverse environment (e.g., Invoke-RestMethod calls to "$baseUrl/EntityDefinitions" and other $baseUrl API endpoints shown in references/api-authentication-reference.md and references/table-management-reference.md), and it reads and interprets that environment's schema/data to decide reuse vs create actions and to build table mappings, so untrusted third-party content can materially influence subsequent tool use.