research-protocol

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Research & Monitoring and Parity Scan procedures (references/research-protocol.md) explicitly require checking public release notes / CHANGELOGs and using source material like papers, blog posts, and crate docs (public third‑party content) to inform findings, spawn the sdd subagent, and file GitHub issues, so untrusted web content is read and can materially change agent actions.