gsp-add-reference

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's Process (Step 3, "For URLs") explicitly fetches URL content and writes summaries into project references, meaning the agent will ingest and act on arbitrary public web pages (untrusted third-party content) as part of its workflow.