afa-expand

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow (see SKILL.md and work-modes-and-templates.md / references like the Geographic Arbitrage and new-digital-channels guides) explicitly instructs the agent to check public third‑party sources such as Google Trends, Amazon listings/Brand Analytics, TikTok Creative Center and Facebook Ad Library as part of market-signal verification and channel evaluation, meaning the agent will fetch and interpret untrusted user-generated web content that can materially change decisions.