software-architect

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Phase 3 "Research — Do Not Skip" explicitly requires live web research (e.g., "WebSearch — find candidates on GitHub", "GitHub issues/discussions", "context7 ... query-docs"), meaning the agent will fetch and interpret open/public, user-generated web content that can influence design decisions.