gentic-research

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's SKILL.md explicitly instructs the agent to run search_reddit (routed via ScrapingBee) to fetch Reddit posts and quotes verbatim user content, and to use those third-party, user-generated posts to drive analysis and follow-up actions, which clearly exposes the agent to untrusted external content that can influence behavior.