process-spec

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow (SKILL.md Step 3 "Fetch Documentation" and the example in examples/process-example.md) explicitly instructs the agent to retrieve and use external documentation and APIs (e.g., the public Petstore API at https://petstore.swagger.io), meaning it will ingest open third‑party content that can influence how it constructs operations, validations, and tooling decisions.