taruvi-functions

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's official templates and scenarios (e.g., "Public webhook receiver" in references/scenarios.md and "File processor" in references/function-templates.md, plus event-driven guidance in references/event-filters.md and SKILL.md) explicitly ingest and parse untrusted external webhooks, uploaded files (sdk_client.storage.download), and event params as part of normal function workflows, meaning third-party user-provided content can be read and drive actions.