sales-creatoriq

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill instructs use of CreatorIQ's content-tracking and SafeIQ features and the ExchangeIQ API to ingest and review auto-detected public social media content (user-generated posts) from third-party platforms, and the SKILL.md workflow explicitly expects the agent to read those items and take actions (Step 3 and the API reference), so untrusted third-party content can influence decisions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly documents and instructs on CreatorIQ Pay — a built-in payment processing capability. It describes "Global payments: Pay creators in multiple currencies and regions", "Payment scheduling: Set up one-time or milestone-based payments", "Payment status: Track pending, processing, and completed payments", and the Example that "Sets up CreatorIQ Pay with milestone payments (50% on content approval, 50% on publish)". Those are direct payment initiation/management functions (i.e., moving money), not merely generic API or browser automation. Therefore it provides direct financial execution capability.