cloudflare-workers

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill documentation (references/advanced-features.md under "Workers for Platforms" and the "Upload User Workers" example) explicitly describes fetching/dispatching to customer-provided Workers and uploading arbitrary customer code, and other examples (HTMLRewriter/fetch of external URLs) show ingesting and transforming external web content, meaning the agent would read and act on untrusted third‑party content.