ads-copy

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow (SKILL.md, "On every invocation") directs the agent to run the ../ads-audit/references/business-context.md intake procedure which explicitly includes a "website crawl" to gather business context, so the agent will fetch and read third-party public website content that can materially influence ad-writing decisions.