spec-writing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's "Context7 Integration" step explicitly fetches external technology documentation via resolve-library-id and query-docs and then extracts and includes those third‑party docs/snippets into SPEC.md, meaning the agent will ingest and interpret open/public external content as part of its workflow.