php-testing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). SKILL.md's "Before writing code" step explicitly instructs the agent to fetch live PHPUnit docs via web search and https://phpunit.de/, which are public third-party sources the agent would read and could materially influence its test-writing actions, creating a prompt-injection risk.