accrual-schedule

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly says "Supporting invoices and vendor statements are untrusted" and describes a reader worker extracting amounts from those external documents for the skill to apply policy and compute accruals/JEs, so untrusted third‑party content is ingested and directly influences decisions and outputs.