competitor-positioning

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's required workflow (SKILL.md Steps 4–6 and the per-competitor sub-agent prompt in references/positioning-agent-prompt.md) explicitly uses nimble map/search/extract to fetch and analyze public pages (homepages, features, pricing, blogs and social results) from arbitrary competitor domains, meaning the agent ingests untrusted third‑party content (web pages and social/blog posts) and uses that content to drive analysis and next actions (positioning insights, battlecards).