flow-next-plan

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill's Step 1 research workflow explicitly runs a required "docs-scout" (External documentation) and other scouts (e.g., github-scout/docs-gap-scout) whose findings are passed into the plan prompt and used to shape plans and task decisions (see steps.md "CRITICAL — Step 1" and the scouts tables), so it ingests untrusted public third‑party content that can materially influence subsequent actions.