industry-scanner

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly instructs the agent to run web searches and scrape/read public third‑party sources (Phase 2: 2A web search, 2B blogs, 2C Reddit, 2D Twitter/X, 2E LinkedIn, 2I review sites, etc.) and then interpret those untrusted, user‑generated sources to drive consolidation and Phase 4 strategic actions, exposing the agent to indirect prompt injection from those public pages/posts.