linkfox-dld-product-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly calls the external API https://tool-gateway.linkfox.com/dld/productSearch (references/api.md) to retrieve real-time product listings and metadata sourced from the public 1688 marketplace (SKILL.md), and the workflow requires the agent to read, display, and base product-sourcing decisions on those third‑party listing titles, images, URLs and metrics—meeting the criteria for ingesting untrusted public content that could carry indirect prompt injections.