sub-agent-patterns

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's core workflow and templates (SKILL.md and rules/sub-agent-patterns.md) explicitly require using WebFetch/WebSearch and "verify with npm view / check official docs" to read public websites (e.g., npm, GitHub, blog/docs URLs) and then "FIX issues found", meaning untrusted third-party content is ingested and can directly influence agent actions.