microsoft-docs

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill explicitly searches and fetches pages from public documentation sites (learn.microsoft.com, aspire.dev, code.visualstudio.com, docs.github.com) and instructs the agent to read and act on those pages as part of its workflow, exposing it to open/public third‑party content that could carry indirect prompt injection.