business-development-manager

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow (references/workflow.md §8: "Build target list using prospecting tools" and "Research each target: products, recent news, decision-makers") and toolkit (LinkedIn, Apollo.io, ZoomInfo, Crunchbase, news) explicitly requires ingesting open/public, user-generated or third‑party web content that the agent would read and use to drive outreach and deal decisions, creating a clear vector for indirect prompt injection.