intervals-icu

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly fetches data from the public Intervals.icu API (e.g., curl calls to /athlete//activities, /events, /workouts and /activity/) and reads user-generated fields like name/description/streams which the agent is expected to parse and could influence subsequent actions, so untrusted third-party content could inject instructions.