bmad-agent-marketing-launch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly requires using agent-browser for live competitive research (see SKILL.md Dependencies and the "Research Mode" in references/launch-type-assessment.md) and contains agent-browser commands that open public, user-generated sites (e.g., Product Hunt, Reddit, LinkedIn, Indie Hackers) which the agent is expected to read and extract to drive launch decisions and actions, creating a clear vector for indirect prompt injection.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill declares and invokes agent-browser installed via "npx skills add https://github.com/vercel-labs/agent-browser --skill agent-browser" and uses agent-browser commands at runtime for Research Mode, which means the GitHub URL is fetched/installed and executes remote code as a required runtime dependency.