israeli-land-tenders

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow (SKILL.md Step 2 and Step 4) instructs the agent to query the remy-mcp server for active tenders and to "Download full tender booklet (chovert michraz) from RMI website", meaning it ingests public third‑party web content (RMI/remy‑mcp) which the agent is expected to read and use to make bidding/decision recommendations, so external content could materially influence actions.