prompt-engineer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflows explicitly require ingesting and reasoning over "retrieved documents"/"retrieved chunks" and "tool results" (see RAG Grounding Instructions in references/architecture-patterns.md and the Hardening Checklist's "Indirect injection awareness" / Input Handling), which are untrusted third‑party/user-generated sources the agent is expected to read and that can materially influence tool use and next actions.