research-documentation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly requires "Web Access" and describes "gathering information from multiple sources" and linking to actual sources (Requirements and Implementation Details), so the agent will fetch and read untrusted public web content as part of its research workflow.