architecture-design

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's template (template.md
• "Implementation Context" / "Required Context Sources") explicitly requires "You MUST read and analyze ALL listed context sources" and lists external documentation/APIs (e.g., a public URL example https://docs.library.com/api), so the agent is expected to fetch and interpret third‑party web content as part of its required workflow.