proactive-agent

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's Self-Healing and Blockers Research instructions (see "Self-Healing" and "Blockers Research" / Heartbeats) explicitly direct the agent to perform "web search for solutions" and "check GitHub issues, forums," which requires fetching and interpreting untrusted public/user-generated content that can influence fixes and actions.