solo-validate

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's SKILL.md explicitly instructs the agent to use MCP's web_search/WebSearch queries (e.g., "web_search(query=...)" and the Devil's Advocate "WebSearch: '' startup failed OR pivoted OR shut down" in Steps 2 and 6b) to fetch and interpret public web content whose findings directly affect scoring and next actions, exposing the agent to untrusted third-party content that could carry indirect prompt injections.