Temu

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflows (SKILL.md, pricing.md, reviews.md, scams.md) explicitly instruct the agent to fetch and analyze user-generated content from open marketplaces and sites (Temu reviews, AliExpress, Amazon, eBay, Google/reverse image search), and to use that content to drive purchase and scam-detection decisions, which exposes it to potential indirect prompt injection.