claude-design

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to inspect and read external repo files and GitHub URLs ("Source-Code Fidelity" and "Reading Documents and Assets" sections), which requires fetching untrusted public third‑party content that the agent will read and use to guide design decisions.