lead-routing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md "Enrichment sources" section explicitly requires fetching and ingesting third-party public/user-generated data (e.g., LinkedIn Sales Navigator, BuiltWith, Clearbit/Apollo, ZoomInfo) which the agent must read and use to enrich leads and drive routing/automation, so untrusted content could materially influence decisions and actions.