security-operations

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly requires ingesting and acting on external threat intelligence and OSINT (see Phase 2 SIEM architecture: "Automated enrichment: threat intel feeds (STIX/TAXII), IP reputation, CVE data" and Phase 4 Threat Hunting: "Weekly: IOC sweeps from threat intel feeds" and "Hunt hypothesis sources: ... OSINT"), which are untrusted third‑party sources that the agent would read and that can materially influence detections and actions.