compete

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly mandates live web collection and ingestion—e.g., the SKILL.md Core Contract ("Always use WebSearch") and Boundaries ("Run WebSearch/WebFetch at the start of every analysis") and the intelligence-gathering references (which list review sites, social media, forums, job postings, app store reviews, etc.)—so the agent will fetch and interpret untrusted, user-generated third-party content that can materially influence its analysis and next actions.