supplier-risk-agent

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly requires ingesting and monitoring open/public third-party sources (Step 4 "open-source intelligence (OSINT) monitoring" and third-party data feeds like D&B, EcoVadis) and uses those external signals to update scores, trigger escalations, and drive mitigation actions (Step 7 continuous monitoring), which clearly exposes the agent to untrusted, user-generated or public web content that can influence its decisions.