best-practices-researcher

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's Phase 2 "Online Research" workflow explicitly directs the agent to use Context7 MCP and to "search the web for recent articles, guides, and community discussions" and to analyze popular GitHub repositories and other external documentation, which are open/public third‑party sources the agent will read and use to drive recommendations.