opportunity-solution-tree

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). Step 0 ("Gather Context") explicitly asks the agent to ingest user-provided product context such as website copy, competitor materials, customer reviews (G2, Capterra) and community discussions — untrusted public content the agent will read and use to generate opportunities and select POCs, so arbitrary third‑party text can materially influence its decisions.