system-design

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Environment Check ("Confirm WebSearch and WebFetch tools available for research") plus the mandatory Phase 4 "Conduct 5 research rounds" and agents/tech-researcher.md (which specifies web-based research and returns "references" URLs) show the agent will fetch and interpret open/public web content as part of its workflow, and those findings directly drive architecture decisions and commits.