rust-expert

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's Operating Model and references (Operating Model step 5 and references/crate-selection.md's "Research live docs/source before relying on") explicitly direct the agent to consult live third‑party docs/sources (e.g., dependency docs, changelogs, web docs) which are open/public content the agent would read and that can materially influence dependency and implementation decisions.