flow-discovery

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's /flow-research command and the Internet Research Guide (references/research-guide.md) explicitly require searching, scraping and reading public web sources (e.g., Reddit, StackOverflow, app store reviews) via a tool named "Firecrawl" and using those findings in reports, so the agent will ingest untrusted, user-generated third-party content that can influence its analysis and subsequent actions.