israeli-travel-planner

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow directs the agent to use external public MCP servers and public websites for live transit and park status (see "Recommended MCP Servers" and troubleshooting references to Moovit/parks.org.il and the Ministry of Transport GTFS feed), so the agent will fetch and act on untrusted third-party web content that can change planning decisions.