ioc-analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly ingests/enriches IOCs from external third‑party threat feeds (e.g., "Dependencies: Requires access to external feeds like VirusTotal or AlienVault", the CLI examples using "--feed virustotal", and the "feeds" config) which are public/vendor services that can contain user-submitted/untrusted content and are read and acted on as part of the analysis workflow.