snap-prd

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md "Explore codebase" step explicitly instructs the agent to "Research externally (web, library docs) when it adds value," which requires fetching/reading open web content that can materially influence PRD decisions and subsequent actions.