test-driven-development

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The "Progressive Concretization Protocol" instructs the agent to run commands like npm view <package> version and npm view <package> time.modified, meaning the agent will fetch and interpret metadata from the public npm registry (an open, user-published third-party source) at runtime, exposing it to untrusted third-party content.