refresh

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md Step 2 ("Re-Run 5 Independent Searches") explicitly requires fetching and interpreting content from public third‑party sources (e.g., Google, LinkedIn, Google News, company registries, OFAC/EU/UN sanctions lists, Reuters/Bloomberg, LexisNexis/Refinitiv) and those findings directly drive escalations and decision-making, exposing the agent to untrusted user‑generated/open web content.