slack-qa-investigate

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's investigation rules in SKILL.md explicitly instruct the agent to "Fetch linked pages (docs, wikis, external references)" and to "Use Web Search When Needed," which requires fetching and reading arbitrary public web pages and third‑party docs (untrusted user-generated or public sites), exposing the agent to indirect prompt injection.