studio-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md explicitly interacts with public WordPress.com preview sites (preview create/list/update) and warns that preview sites contain user-generated content — and also cautions that blueprints can include arbitrary code — indicating the agent will read/process untrusted third-party site content from those public sources.