verbal-agreement-summarizer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required Information Gathering step explicitly asks the user to paste full DM/email threads, call notes, or transcripts (user-provided social media/email content), which the agent must read and interpret to extract terms — exposing it to untrusted, user-generated third-party content (see "Before extracting terms, assess these inputs" / "Ask the user to paste the full DM exchange...").