beads-ccpm

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's agent definitions (e.g., adr-architect, code-analyzer, file-analyzer, test-runner) explicitly include WebSearch/WebFetch tools and instruct agents to "research" technologies and launch requirements-generate subagents to fetch web research, which means it will fetch and read open/public third‑party content (arbitrary sites) as part of its workflow.