typo3-project-upgrade

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md Phase 5 "Structural Comparison (curl)" section explicitly instructs fetching and parsing arbitrary public site pages (e.g., curl -sL "https://site/page/" and comparisons against "https://old-site" / "https://new-site"), meaning the agent would ingest untrusted third‑party HTML content and use it to drive migration decisions.