bmad-create-architecture

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to "Search the web" and verify current versions and starter templates (see steps/step-03-starter.md and steps/step-04-decisions.md), so it will fetch and interpret open/public web content that can materially influence decisions and subsequent commands.