job-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly requires using "Step 2：搜索实时岗位" which uses web_search to fetch real-time recruitment information from public job sites (e.g., platform links like zhipin.com, LinkedIn, Boss直聘), so the agent ingests untrusted, user-generated/open-web content and uses it to drive search results and channel recommendations.