A coordinator handling requests from multiple users spawns a search subagent and passes the full coordinator message history as the subagent's context. User A's session is currently active. What is the primary risk?
Answer: The subagent may surface data from User A's history to User B if it is reused across sessions
Passing the full coordinator history to subagents creates context leakage risk. If the coordinator's history contains user-specific data and that context is passed to a subagent that is shared across users or whose results are cached, User A's data may appear in User B's session. The minimum-viable context pattern (passing only task-relevant fields) is the mitigation.