node-backend

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md "Before writing code" explicitly instructs fetching live docs from public sites (e.g., developer.bigcommerce.com, expressjs.com, fastify.dev, and public GitHub sample apps), so the agent would ingest untrusted third-party content that can materially influence its implementation decisions and actions.