webflow-upgrade-migration

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md workflow explicitly instructs fetching public package metadata/changelogs (e.g., "npm view webflow-api --json" in Step 1) and links to external developer docs/GitHub (developers.webflow.com, github.com) which are open third‑party sources the agent or operator is expected to read and that can materially influence upgrade decisions.