oss-product-selection

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's workflow and operations (see Phase 4 and Phase 6 in SKILL.md and the explicit operation specs in references/operations.md — e.g., OP-NICHE, OP-PAIN, OP-HYPE, OP-PLATFORM, OP-NAME, OP-VALIDATE) fetch and ingest public, user-generated content from GitHub, npm, Reddit, Hacker News, Twitter/X, forums and web pages and then use those findings to eliminate, score, name, and commit product decisions, so untrusted third-party content can materially influence agent behavior.