stream-inspector

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md shows it fetches stream data and recent events from the external Lytics API (e.g., https://api.lytics.io/v2/stream/... endpoints), which are arbitrary/user-generated event payloads the agent is expected to read and that could materially influence follow-up actions.