drupal-expert

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly requires researching and evaluating contrib modules on the public drupal.org site (see "How to Research Contrib Modules" / "Search on https://www.drupal.org/project/project_module" and the "CRITICAL" research-first steps), which instructs the agent to fetch and interpret user-contributed content (project pages and issue queues) that can change whether it generates custom code.