ideate

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Workflow and Research guidance explicitly instruct the agent to perform "web research" and "use both local context and web research" (SKILL.md, steps 3 and Research guidance), meaning the agent will fetch and read open/public third‑party web content that could be untrusted and inject instructions.