automation-refactor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs a Phase 2 "Web Research (Use WebSearch Tool)" step that fetches content from public websites/forums (e.g., official docs, platform-specific forums, Stack Overflow) and also ingests user-provided workflow JSON, so it will read untrusted third‑party/user-generated content as part of its workflow.