infrastructure-compliance-auditor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's dns_security_checker.py (Workflow 2) explicitly resolves and parses public DNS records (SPF/DKIM/DMARC/CAA/DNSSEC) and fetches the MTA-STS policy from https:///.well-known/mta-sts.txt — untrusted public content the agent is expected to read and interpret as part of its audit workflow, which can materially influence findings and remediation decisions.