design-components

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's Step 3 "External Patterns" explicitly requires performing web_search queries of public websites (e.g., "web_search: 'best [component type] UI patterns 2025'"), so the agent is instructed to fetch and read open/public third‑party content as part of its core workflow, which could allow indirect prompt injection.