templ-http

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly parses and renders untrusted user-generated request content (query params, form data, and path/path segments) as part of its workflow (see SKILL.md and resources/request-and-response-patterns.md showing r.URL.Query(), r.ParseForm()/FormValue, and re-rendering with user input), so third-party user input can influence rendering and handler behavior.