deliverability-incident-response

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md instructs the agent to check public third-party blacklists and tools (e.g., "Check: Spamhaus, Barracuda, SURBL via /email-deliverability-audit → spam-test report → blacklist detail" and "MX Toolbox (https://mxtoolbox.com/blacklists.aspx)") and to use external verification services (MillionVerifier), which the agent is expected to read and act on to determine remediation steps, so it clearly ingests and trusts open/public third-party content that can change behavior.