crafting-instructions

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's documentation (SKILL.md and references/project-instructions.md) explicitly instructs the agent to use web_fetch/web_search and to retrieve and summarize external public sources (e.g., company blogs, SEC filings, news articles and linked articles shown in references/ and standalone-prompts.md), so the agent would read and act on untrusted third-party web content during its workflow.