marketing-os-starter

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly shows the Researcher scraping public user-generated sources ("scraping G2 reviews", "Cross-referencing Reddit r/marketing") and includes those quotes/evidence in the audience-profile.json that downstream agents (Strategist/Copywriter) read and act on, so untrusted third-party content can directly influence agent decisions.