lead-enrichment

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (medium risk: 0.65). The skill’s runtime workflow ingests outsider-authored free text via provider-sourced content (e.g., LinkedIn enrichment and intent signals like G2/Bombora) that the agent/Clay reads to compute fields and AI personalization, which can include arbitrary text authored by third parties), so it can feed outsider free text into the LLM context indirectly through enrichment/AI columns.