nextdns-api

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's workflow (SKILL.md and rules/logs-management.md / rules/logs-download.md) instructs the agent to fetch and stream DNS logs and analytics from the public NextDNS API (e.g., GET /profiles/:profile/logs, /logs/download, analytics endpoints on https://api.nextdns.io), which ingest user-generated/untrusted DNS query data and domain lists that the agent is expected to read and could materially influence follow-up actions (filtering, allow/deny, copying), so this exposes the agent to untrusted third-party content.