create-mcp-integration

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly configures and connects to external hosted MCP servers (e.g., references/server-types.md shows SSE/HTTP/WS URLs like https://mcp.asana.com/sse) and the execution docs (references/tool-usage.md and SKILL.md) require the agent to discover and parse tool schemas and responses from those remote services (via GET/tool discovery and POST/tool invocation), meaning untrusted third-party content can be ingested and influence subsequent tool calls and decisions.