find-email-by-name

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly says it calls third-party Hunter/Tomba APIs (see "How It Works" and the "Response" section noting a "sources" array and Tomba's LinkedIn finder) which ingest public web pages/LinkedIn profiles and return scraped, user-generated content that the agent reads and uses to determine email addresses, exposing it to untrusted third-party content that could carry indirect prompt-injection payloads.