transfer-partners

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). Yes — the SKILL.md workflow explicitly tells the agent to use seats.aero (API or web) for award availability (and to check public sites like Roame.travel for transfer bonuses), which are open/public third‑party pages the agent must read and whose content directly influences booking recommendations and follow-up actions.