software-code-review

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's "Trend Awareness Protocol" in SKILL.md explicitly requires using WebSearch/web fetch (see "When users ask... you MUST use WebSearch" and the "Required Searches"/"Fact-Checking" sections), so the agent will fetch and act on open/public third‑party web content that could carry untrusted instructions.