code-review-council

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The Librarian role in the required workflow explicitly states it must "验证关键 API 的实际用法（不能凭记忆，要基于文档）", which obliges the agent to fetch and read public open-source library documentation/web resources (third‑party content) that can influence library selection and implementation decisions.