moai-core-rules

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs agents in Rule 2 ("Analyze: Research latest docs via WebSearch/WebFetch") and the reference.md lists external public links (infoq, arXiv, etc.), meaning the agent will fetch and interpret open, third‑party web content as part of its workflow, which can materially influence decisions and tool use and thus enables indirect prompt injection.