executive-consultant

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly instructs the agent to "按需联动 deep-research" and to "收集已公开规则和历史做法" (see SKILL.md and references/china-gov-business.md) and escalation-boundaries.md specifically says to use deep-research to "查当前法规、政策、公司事实、市场舆情", which indicates the agent will ingest open/public third-party content (public rules, policies, market/public sentiment) and use it to inform decisions.