israeli-corporate-law

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's workflow (Step 4: "Research and cite sources (when tools allow)") explicitly instructs the agent to fetch and read public third‑party websites (e.g., gov.il, ISA/TASE regulator sites and secondary law‑firm memos or blogs), so the agent would ingest and interpret open/untrusted web content as part of its process.