shopping-assistant

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly instructs the agent to run web searches and use web_fetch on public shopping sites, review pages, comparison articles, Kickstarter/Indiegogo listings, and user reviews (Phase 2–4, 8 and "Web Search Guidelines"), and to read and act on that untrusted, user-generated third‑party content to influence candidates, comparisons, and final recommendations.