triage-frontend-issues

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.85). The skill’s runtime path ingests outsider-authored free text from Sentry issue metadata fetched via get_sentry_resource / search_issues (e.g., issue titles, stack-frame hints, and culprit strings written by external reporters/customers), which the agent then places into the LLM context for classification.