packaging-design-generation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SSE_EVENTS reference (references/SSE-EVENTS.md) explicitly documents web_search_query and web_search_citations events and a "Web Search" event flow showing the agent issuing web searches and ingesting/citing open-web URLs, so it clearly consumes untrusted third-party content that can influence subsequent responses.