afa-tt

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's required workflows (e.g., Mode 1 loading references/account-setup-sop.md and Mode 2 loading references/creative-templates.md as listed in SKILL.md) explicitly instruct visiting and ingesting external public sites and user URLs—e.g., business.tiktok.com, TikTok Creative Center/Ad Library and third‑party tools like Pipiads/Minea and user-provided store_url—which are untrusted, user-generated/open-web sources the agent must read and use to drive decisions and actions.