bmad-market-research

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill explicitly requires live web searches ("⛔ Web search required." in SKILL.md) and multiple required step files (e.g., steps/step-02-customer-behavior.md, step-03-customer-pain-points.md, step-04-customer-decisions.md, step-05-competitive-analysis.md, step-06-research-completion.md) instruct the agent to search, ingest, cite, and act on content from public web URLs, meaning untrusted third‑party content is read and used to drive analysis and subsequent actions.