cloudbase-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's runtime workflows explicitly instruct the agent to fetch and download user-provided content (e.g., "tcb cloudrun download" in references/cloudrun.md, "tcb hosting download" in references/hosting.md, and storage download/cp workflows in references/storage.md) and to read external docs/web links (core.md's "web_fetch the doc"), which means the agent will ingest untrusted third-party/user-generated content that can influence subsequent command construction and actions.