grouchygiraffe-recipe-lookup

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.75). The runtime workflow reads a YAML file and a _thumb.jpg derived from an outsider-provided media path, and then performs WebSearch/WebFetch to fetch arbitrary public web pages/snippets (e.g., the author’s site and search results), which can include outsider-authored free text that may be ingested into the LLM context.