excel-mcp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's Power Query workflow (see references/powerquery.md and SKILL.md) explicitly instructs the agent to run powerquery(action: 'evaluate', mCode: '...') and to load/refresh queries from database/web sources, which executes and returns third‑party data (columns/sample rows) that the agent is expected to read and act on—exposing it to untrusted web/user-generated content that could carry indirect prompt injection.