shifting-perspective

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs passing arbitrary URLs and YouTube links to InfraNodus ("Pass the URL directly — InfraNodus will fetch and analyze the content" under Input Handling) and uses that fetched, untrusted third‑party content to drive diagnoses and follow-up tool actions, so external content can materially influence the agent's behavior.