inbox

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (medium risk: 0.65). The required runtime workflow in Triage Mode Step 4 (Sender Research) performs web search for legitimacy/social presence for opportunity senders, which can fetch public web content authored by outsiders and inject it into the agent’s LLM context via the browsing/search results.