progress-reporting

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's SKILL.md and REFERENCE.md explicitly instruct the agent to pull and interpret user-generated content from external connectors (e.g., chat/Slack, project tracker, meeting transcription, knowledge base, and user feedback like Intercom/Canny), which are untrusted third-party inputs that can influence report content and downstream actions.