tomtom-maps-sdk-js

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's docs and required workflow show the agent calling external TomTom services (search(), placeById(), trafficIncidentDetails(), calculateRoute(), etc.) and adding MapLibre sources/layers from arbitrary URLs or fetched GeoJSON (e.g., map.mapLibreMap.addSource(..., data: 'https://example.com/data.geojson') and fetch(...) examples), meaning it ingests public/untrusted third‑party content that the agent reads and acts on (display, routing, event-driven fetches), which can materially influence subsequent actions.