log-driven-debugging

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly asks the user to "Run your code and paste the complete console output" (see "Request Console Output"), so the agent will ingest and interpret arbitrary user-generated/untrusted log text as part of its workflow.