wedding-invitation-generation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SSE-EVENTS.md explicitly defines and shows use of web_search_query and web_search_citations (and a "Web Search" event flow) indicating the agent performs web searches and ingests external URLs/citations from the open web, which it then uses to form responses and can thus be influenced by untrusted third‑party content.