prompt-engineering

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs agents to "Browse the web" and perform RAG/web research (see SKILL.md "Web Research Prompts" and related tool-use/RAG guidance in the references), so the agent is expected to fetch and interpret untrusted public web content that can influence tool calls and decisions.