devdocs-requirements

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's 背景信息模式/--context workflow explicitly requires using WebFetch to extract summaries from provided URL links ("URL 引用必须使用 WebFetch 提取摘要" and "从 URL 提取摘要（WebFetch）"), so arbitrary public webpages can be fetched and their untrusted content integrated into the agent's document-generation decisions.