list-affitor-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Workflow and metadata explicitly require/allow web_search and web_fetch (see "Step 2: Determine Skill Metadata" tools field) and Example 2 describes researching public sites like G2 and pricing pages, so the agent is expected to fetch and interpret open/public third‑party web content that can influence decisions.