idea-to-implementation-doc

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The required workflow (SKILL.md, "2) Research similar products" and the "Research guidance" sections) instructs the agent to look up and incorporate information about existing apps/products (i.e., open/public third‑party sources) into its implementation decisions, which means untrusted external content could be read and materially influence planning.