yc-office-hours

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly tells the agent to use "web search or current-web context" for Landscape Awareness (Phase 2.5) and to inspect repos/project workspaces (Phase 1 / Capability-Aware Behavior), which requires fetching and interpreting open/public third‑party content that can influence decisions and next actions.