issues-to-openspec

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required "Research and exploration" step explicitly instructs the agent to "Search the web (WebSearch) for the latest technologies, patterns, or approaches" and to "Incorporate any findings into the generated artifacts," which means the agent will fetch and interpret open/public web content (potentially user-generated) that can materially change design/spec decisions.