future-aware-architecture

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Phase 5 "Gather Specialist Evidence" in SKILL.md and the methodology reference explicitly direct the agent to perform "bounded external browsing" or "deep-research" to gather fresh evidence from web sources (and skill.json lists network capability), which means it will fetch and ingest untrusted public third‑party content that can materially influence decisions.