exploring-live-traffic

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly instructs the agent to read the Live tab's streamed "Live events" feed and tiles (e.g., live events showing event/person/URL and top referrers using $referring_domain) — i.e., ingested, user-generated third-party content from site visitors — which the agent is expected to interpret and which can drive follow-up actions (opening insights, drilling into bots), creating a clear vector for indirect prompt injection.