n8n-syntax-node-types

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's documentation and examples (e.g., SKILL.md IExecuteFunctions helpers.httpRequest, the loadOptions/getProjects/getBoards examples in references/examples.md, and the resourceLocator "By URL"/requestDefaults using credentials.baseUrl) show the node fetching from arbitrary external APIs or user-supplied URLs and then using those responses to build options, routing, and execution logic, which means untrusted third‑party content can be read and influence agent actions.