validating-plans

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's Environment-Verifier/Reality-Check agent (Phase 2 / "What It Checks" in SKILL.md and references/agent-guide.md) explicitly verifies "package availability in registries" and "API signatures and exports", which requires fetching and interpreting public package registry / external API content (third‑party, user-published) that can materially influence validation decisions and tool actions.