menu-design-generation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SSE event documentation (references/SSE-EVENTS.md) explicitly includes web_search_query and web_search_citations events that return public URLs and citations, indicating the agent will fetch and incorporate open web content (third‑party URLs) into its workflow and decision-making.