atscript-ui-forms

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's AsRef / ValueHelpClient flow clearly performs HTTP requests to target URLs declared via @db.http.path (see references/actions-refs.md "ValueHelpClient flow" and FK examples querying "/api/countries"), and those remote results are parsed and used to populate pickers and commit values—i.e., the agent fetches and interprets external, potentially untrusted third-party content that can change runtime behavior.