tutor-setup

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Document Mode explicitly fetches and ingests web pages ("Phase D1: Extract text ... URL → WebFetch" in SKILL.md), so it will read and act on open/public third‑party content which can influence mapping, note creation, and subsequent actions.