woo-data-stores

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly instructs the agent to "Fetch live docs" via web searches and to fetch https://github.com/woocommerce/woocommerce/wiki and other public developer pages, which are open/public third‑party sources whose content the agent is expected to read and use to determine implementation details—allowing untrusted, user-generated content to influence decisions and actions.