survey

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's instructions (SKILL.md and references/evidence-recovery-ladder.md) explicitly require fetching and interpreting open web content (e.g., "direct primary-page retrieval", "python3 + urllib.request", "browser-rendered retrieval", "indexed snippet") as evidence for the survey lanes, which means untrusted third-party pages can influence subsequent decisions and artifact content.