refactoring-expert

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly directs the agent to "use web_fetch" on third-party public sites (e.g., https://refactoring.guru/, https://google.github.io/styleguide/, and a GitHub URL) so the agent will fetch and interpret external web content as part of its workflow, which could materially influence actions.