brainstorming

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Phase 3 core sub-agents (notably "Sub-agent 1: Architecture Research" and "Sub-agent 2: Best Practices Research") are required to "Use WebSearch" to fetch public web content, so the agent will read and act on untrusted third‑party pages as part of its workflow.