ios-workflow-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's Phase 4 "Research: iOS HIG Conventions" explicitly instructs an agent to "Search for reference examples using WebSearch" and "Visit 2-3 reference examples" (public websites) and to incorporate those findings into workflow checks, so untrusted third-party web content can be read and used to influence the agent's outputs and decisions.