code-quality

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). PHASE 2 ("Documentation Research") explicitly mandates launching a research-expert subagent to fetch and verify official API docs, best practices, deprecations and security advisories from library/framework documentation (public web sources), which the agent is required to read and use to drive fixes—thus exposing it to untrusted third-party content that can influence actions.