prompt-architect

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Step 1 "Ingest and Analyze" and the INPUTS section explicitly allow and instruct the agent to "browse or infer context" from links, meaning the agent will fetch and interpret arbitrary third-party web content (open URLs), exposing it to untrusted/user-generated material that could enable indirect prompt injection.