sf-b2c-pwa-kit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md "Before Writing Code" explicitly instructs the agent to fetch live docs and web-search public sites (e.g., https://developer.salesforce.com/docs/commerce/pwa-kit-managed-runtime/overview and site:github.com SalesforceCommerceCloud pwa-kit), so the agent will ingest and act on third‑party public (including user-generated GitHub) content that can change coding decisions.