paseo-orchestrate

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's Research Phase and researcher prompts (references/research-phase.md and Phase 3: Research) explicitly instruct researchers to "search the web", consult external docs (e.g., "Search the Expo docs", "Web research", "Find 2-3 reference implementations") and synthesize those findings into planning, so untrusted public web content is fetched, interpreted, and used to drive subsequent agent actions.