framework-migration-deps-upgrade

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's implementation playbook explicitly fetches and parses external changelogs and community resources (e.g., BreakingChangeDetector._fetch_changelog and get_changelog_url / get_community_url in sub-skills/implementation-playbook.md) — public, user-generated content that the agent reads and uses to decide migration steps, so it can materially influence actions.