code-verify

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's SKILL.md Process step 2 explicitly instructs the agent to "Fetch official documentation for the libraries/APIs (use WebSearch/WebFetch)," which requires browsing public third-party web pages whose content the agent will read and use to drive verification decisions, creating a risk of indirect prompt injection.