research-brief

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.85). The skill’s REQUIRED workflow includes “Search the web — company site, news, LinkedIn… press releases, recent podcast/video appearances,” which at runtime can fetch and ingest outsider-authored public web content (e.g., articles/press pages) into the LLM context for summarization.