entity-optimizer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's SKILL.md (Data Sources and Step 1: Entity Discovery) explicitly requires querying public third‑party sources—e.g., the Knowledge Graph API, Wikidata/Wikipedia, and AI systems like ChatGPT/Claude/Perplexity—and directs the agent to read and base audit actions on those results, exposing it to untrusted, user-generated web content that can influence subsequent tool use and decisions.