front-dev

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). Yes — SKILL.md Step 1 ("Check for Agentation") explicitly instructs using Agentation's MCP server so Claude Code can access real-time, user-generated annotations (third‑party content) that the agent is expected to read and which can materially influence its actions.