kiss

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md "Before Applying" section explicitly tells the agent to "use context7 MCP or web search — don't guess," which requires fetching and reading open web content (web search) as part of the workflow and could influence subsequent actions.