a2a-streaming

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly instructs the developer/agent to "Fetch live docs" from external public sources (e.g., https://a2a-protocol.org/latest/specification/ and web-searches of site:github.com a2aproject and a2a-samples), meaning the agent is expected to ingest and act on untrusted public web content that could influence implementation behavior.