tinybird-cli-guidelines

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's rules explicitly allow appending/replacing datasources from arbitrary URLs (see rules/append-data.md and rules/cli-commands.md: tb datasource append <name> --url <url> and tb datasource replace <name> <file_or_url>), which means the agent can fetch and ingest untrusted public third‑party content as part of its workflow and that content could materially affect subsequent operations.