flyer-design-generation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.85). The skill's SSE event documentation (references/SSE-EVENTS.md) explicitly includes web_search_query and web_search_citations events that pull citations/URLs from public web searches into the agent's workflow, meaning the agent reads and acts on untrusted third-party web content.