israeli-gov-form-automator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow (SKILL.md Step 3 and the Examples) explicitly instructs the agent to navigate to and download/parse public government sites and PDFs (e.g., page.goto("https://www.gov.il/..."), downloading Tofes 101 from Rashut HaMisim and reading PDF form fields), meaning it fetches open third‑party web pages and documents that the agent will read and act on.