task-breakdown

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly requires a subagent to "ground critique using websearch tool," which forces the agent to fetch and interpret public web content (untrusted third-party sources) as part of its workflow and could influence subsequent actions.