code-review

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md (Review Process step 5) explicitly instructs the agent to "Fetch online documentation" for packages or libraries, which requires ingesting public third‑party web content (package docs, READMEs, etc.) that could influence review decisions.