pre-work-research

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's "Step 4: Research External Resources" explicitly tells the agent to visit documentation URLs and consume community resources such as GitHub issues, Stack Overflow, and blog posts, so it will fetch and interpret untrusted, user-generated third-party content.