new-product-tracker

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.85). The skill calls external vendor APIs at runtime (e.g., Amazon Search /api/v1/tools/linkfox/amazon/search, Keepa /api/v1/tools/linkfox/keepa/productSeries, and Jungle Scout /api/v1/tools/jungle-scout/keywords/*) and then ingests the returned product fields (including free-text like title) into the LLM context via the agent’s normal “tool result → model” flow, which is outsider-authored content from public marketplaces/third-party datasets.