rich-text

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly instructs the agent/developer to "webfetch" external GitHub READMEs and docs (e.g., the react-native-enriched README and various react-native-enriched-markdown docs), which are public, user-maintained pages that the agent would read and could influence implementation decisions or tool use.