stitch-design

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to ingest and act on exported designs and code from a third-party site (Google Stitch) — e.g., "Step 5: Process Exported Code" and the "Sharing with Claude" section that asks users to paste HTML/CSS or share a Figma link — so untrusted third‑party content can be read and used to drive follow-up actions.