review-code

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's API usage reference explicitly instructs the reviewer to "resolve the library using documentation MCP tools or WebSearch" and "query for the specific APIs being used" (references/api-usage-review.md), meaning the agent will fetch and interpret public third‑party web documentation which can materially change review decisions.