tempo

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's Business Calendar reference explicitly requires fetching and hot-reloading public third‑party data (e.g., the 内閣府 CSV at https://www.cao.go.jp/chosei/shukujitsu/syukujitsu.csv and subscribing to external .ics feeds) as a mandatory runtime input for scheduling decisions (references/business-calendar.md), so external public content is ingested and can directly influence the agent's behavior.