reg-gap-analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). Yes — the workflow's Step 2 ("Read the regulation (or summary/guidance)") together with the "Research-connector pre-flight" step explicitly instruct the agent to query legal connectors or "search the web" (e.g., Westlaw, regulator sites, or open web search), causing it to fetch and interpret open/public third‑party content that can materially influence remediation decisions.