pipeline-assistant

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly requires using the component-search skill's "Online Component Documentation" tool to fetch and read public component documentation (e.g., GitHub/docs pages) as a required step in the workflow, and the agent is expected to interpret that external content to choose component fields and drive configuration/validation decisions—so third‑party web content can materially influence actions.