qa-resilience

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md "Fact-Checking" section explicitly instructs the agent to "Use web search/web fetch to verify current external facts" (reporting source links and dates), which requires fetching and interpreting open/public third‑party web content that can change the agent's recommendations.