icp-identification

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly requires researching a provided company URL and "Using web search and the company URL, investigate" (Phase 1 in SKILL.md), meaning the agent will fetch and interpret public third‑party web content to define the ICP and drive downstream actions, which could allow indirect prompt injection.