israeli-tender-proposal-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's instructions (Step 7 "Price Intelligence via MCP Servers" and the "Recommended MCP Servers" section in SKILL.md and SKILL_HE.md) explicitly direct the agent to query public third‑party MCP servers (BudgetKey and IL Budget via their HTTP URLs) to fetch historical procurement data that the agent must read and use to inform pricing and proposal decisions, exposing it to untrusted public content that can influence tool use and next actions.