music-industry-research

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md and references explicitly require calling Recoup web-intelligence endpoints (e.g., POST /research/web, /research/deep, /research/extract, /research/people and /research/lookup) to fetch and extract public URLs and multi-source web content, and those fetched, untrusted third‑party pages are read and used to drive decisions, syntheses, and follow‑on actions in the workflows.