build-like-iphone-team

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to "Use WebSearch tool for research" and lists open-web sources (e.g., arXiv, tech blogs, company websites) in references/breakthrough-research.md and the SKILL.md templates, so the agent will fetch and interpret untrusted public web content that can change research-driven decisions.