information-retrieval-policy

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md decision flow explicitly requires invoking external retrieval (Step 2/3) including general web search and user-driven public sources (e.g., Stack Overflow, blogs, GitHub issues), and instructs the agent to read and use that content to form conclusions/evidence that drive downstream actions.