summarization

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs the agent to fetch arbitrary web content with "WebFetch if a URL is provided" (Step 1: Identify the Source), and that fetched, untrusted web content is read/parsed and used to generate summaries, action items, and recommendations—allowing third-party text to influence the agent's outputs and next actions.