sales-influencer-marketing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). SKILL.md explicitly instructs the agent to fetch and read platform SKILL.md files from the public web (e.g., "https://raw.githubusercontent.com/sales-skills/sales/main/skills/{skill-name}/SKILL.md" and other repo paths referenced in references/skill-sources.md), meaning the agent will ingest untrusted public third‑party content and use it to drive routing and action decisions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill explicitly directs the agent at runtime to WebFetch and read SKILL.md files from https://raw.githubusercontent.com/sales-skills/sales/main/skills/{skill-name}/SKILL.md, which injects remote text into the agent's context and therefore directly controls prompts/instructions.