linkedin-profile-optimizer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's required Step 1 Intake explicitly asks the user to paste their LinkedIn profile text (headline, About section, experience, featured items), which ingests untrusted/user-generated content from a public social site and the agent is expected to read and act on it (scoring, rewrites, and visibility decisions), creating a pathway for indirect prompt injection.