deep-research

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's required pipeline (Phase 3: "Execute Searches") mandates running 5+ web searches and using WebFetch to read full articles — explicitly including community sources like HN, Reddit, blog posts, and Stack Overflow — and then syntheses/recommendations are produced from those reads, so untrusted third-party content is ingested and can influence decisions (see Phase 3 and the "Community" search angle in SKILL.md).