continuous-improvement

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's research protocol (references/research-protocol.md) explicitly requires the rust-researcher to "proactively search" public reference projects, "check release notes / CHANGELOG", and include "links to papers, blog posts, crate docs" when filing research/dependency issues, which means the agent will ingest and act on untrusted, user-published web content that can influence issue filing and next actions.