entity-optimizer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly requires querying and interpreting public, user-editable and third-party sources—e.g., Google Knowledge Graph / Knowledge Panel, Wikidata/Wikipedia, public SERPs and AI system query responses—as part of its required Entity Audit workflow, which exposes the agent to untrusted external content that could carry indirect prompt-injection instructions.