research-strategy

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly instructs the agent to gather and interpret public community sources—see "Source Prioritization" (Stack Overflow, GitHub issues/PRs, technical blogs) and "Gather Raw Information"—which are untrusted user-generated third-party contents the agent would read and could carry indirect prompt injection.