design-specialist

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly instructs the agent to run web searches and fetch external pages (e.g., ui-ux-pro-max SKILL.md Step 2 uses python3 .claude/skills/.../search.py and many subskills list WebSearch/WebFetch in their toolsets such as brand-guardian and ui-designer), meaning the agent will ingest open/public web content and synthesize it into design decisions that can change tool use and next actions.