testing-patterns

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's OrchestKit workflow and E2E examples in SKILL.md (e.g., HomePage.submitUrl and tests/e2e/analysis-flow.spec.ts and related "Analysis flow (URL → Progress → Artifact)" pages) show submitting and analyzing arbitrary URLs, meaning the agent/test pipeline ingests untrusted public web content that can influence agent decisions and subsequent actions.