templ-http

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly instructs the agent to parse and act on untrusted HTTP request data (query parameters, form data, and path segments) as shown in "Level 2: Routing and Request Data" and "resources/request-and-response-patterns.md", meaning arbitrary third-party/user-provided content is read and can influence rendering, redirects, and handler decisions, enabling indirect prompt-injection risk.