linkfox-sorftime-product-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly calls the LinkFox/Sorftime API (POST to https://tool-gateway.linkfox.com/sorftime/amazon/productQuery as shown in references/api.md and scripts/sorftime_product_search.py) to ingest Amazon marketplace product listings and related public/user-generated marketplace data which the agent reads and uses to drive queries, pagination, and presentation, so untrusted third‑party content can influence the agent's behavior.