create-prd

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's STEP 2 "API RESEARCH" explicitly mandates executing "/explore-api [API name]" and reading external documentation (e.g., "Documentation: [URL]" and ".agents/research/[api]-research.md") — it therefore fetches and interprets public third‑party API/docs which can materially influence decisions in the PRD.