spec-driven-planning

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Research Protocols in Phase 2 and Phase 3 explicitly require using WebSearch, WebFetch, and Bash/curl to fetch external technical docs and competitor/web content (see "Research Protocol (Before Eliciting Requirements)" and "Research Protocol (Before Design)"), and those fetched public sources are read, summarized into requirements.md/design.md and used to drive design decisions—allowing untrusted third‑party content to materially influence behavior.