linkfox-keepa-product-detail

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill directly calls the external Keepa productRequest API (https://tool-gateway.linkfox.com/keepa/productRequest as shown in references/api.md and scripts/keepa_product_detail.py) to ingest Amazon-sourced product fields (e.g., title, brand, imageUrl, asinUrl and sales data) which are third-party/user-controlled content that the agent reads and uses to drive presentation and decision-making (sales trends, pricing, FBA/profit calculations), creating a plausible vector for indirect prompt injection.