explain-code

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). Yes — SKILL.md's "Available Tools" and "Web Fetch Strategy" explicitly require using the playwright-cli and curl to retrieve and parse arbitrary public websites (documentation sites, forums, GitHub, and URLs like https:///llms.txt), so untrusted third‑party content is fetched and interpreted as part of the agent's workflow.