software-backend

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md Freshness Protocol explicitly instructs the agent to "run a targeted web search" and "open release notes/support policy pages" starting from data/sources.json, meaning the agent is expected to fetch and interpret public third‑party web content (release notes, blogs, docs) that can change recommendations.