redfin-api

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly instructs the agent to fetch and parse public Redfin pages via the unofficial stingray API (e.g., "https://www.redfin.com/stingray/" and the GIS CSV / api/home/details endpoints described in SKILL.md), and it ingests user-generated textual fields (e.g., descriptiveParagraph, propertyHistory events, photo attributions) as part of its workflow, which could materially influence subsequent decisions or actions.