steve-jobs-perspective

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). Flagged because SKILL.md's required Agentic Protocol (Step 2) explicitly mandates using WebSearch and other tools to fetch public product reviews/user feedback and web pages ("必须使用工具（WebSearch等）获取真实信息，不可跳过" and examples like "先WebSearch Vision Pro最新评测、用户留存数据..."), meaning the agent will ingest untrusted third‑party content that can materially influence its decisions.