graphql-dev

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs the agent to "Fetch live docs" via web-searches and to fetch https://docs.saleor.io/docs/developer/api-conventions (and other public sites like graphql.org and the-guild.dev), which requires ingesting open/public third‑party web content that will be read and used to guide code-generation and behavior.