ios-app-store-competitor-research

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill fetches and scrapes public Apple App Store pages and the iTunes Lookup API (see fetch_page, fetch_itunes_api, and the screenshot/image downloads in scripts/scrape_app_store.py), then ingests app descriptions, release notes, and screenshots from arbitrary App Store listings which are third-party content the agent reads and could contain malicious or instruction-like text.