opencli-autofix

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow instructs the agent to open and inspect live public websites (e.g., "opencli operate open https://...") and to parse RepairContext.page.snapshot and networkRequests from those sites, so arbitrary third-party web content is fetched and interpreted to drive adapter-patching decisions.