performing-malware-ioc-extraction

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly fetches and ingests public, user-contributed threat data — e.g., the VirusTotal API lookup in scripts/process.py (check_virustotal) and "Sample Acquisition: Obtain sample from MalwareBazaar, VirusTotal" in references/workflows.md — and those external results are read and used to enrich reports and drive sharing/enrichment decisions, so untrusted third-party content can materially influence actions.