deliverable-brd

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The Discovery Research phase explicitly spawns sub-agents (e.g., sub-agents/competitor-scan, prior-art, feasibility-check) that gather "public info" and cache/distill it into docs/requirements/research, which the agent ingests and uses to drive BRD drafting and decisions, exposing it to untrusted third-party content.