instrument-product-analytics

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md Step 2 explicitly instructs the agent to "fall back to your general knowledge and web search" and to "Use posthog.com/docs as the primary search source," which requires fetching and interpreting open web documentation that can directly influence code changes and tool usage.