ui-designer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests and analyzes arbitrary user-provided reference images (see "Step 1: Reference images directory" and "Step 2: Attach reference images to the subagent context"), which are untrusted user-generated content the agent will read and interpret.