product-skills

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The competitive-teardown skill explicitly directs the agent to fetch and parse public third‑party sources (e.g., "Collect data — use references/data-collection-guide.md to gather raw signals from at least 3 sources (website, reviews, job postings, SEO, social)" and includes App Store/X/Reddit examples), so the agent will ingest untrusted user-generated web and social content that can materially influence scoring and follow‑up actions.