planning-implementation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly requires using "web search to research any libraries, frameworks, or tools referenced in the architecture" (Before Planning Begins, step 3), which entails fetching and reading public, untrusted web content that can influence implementation decisions and tool use.