axiom-shazamkit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly says to "bundle the .shazamcatalog file in your app or download at runtime" and shows APIs/CLI flows that add catalogs from URLs and CSV metadata (e.g., "try catalog.add(from: episode1URL", "shazam custom-catalog create --media-items metadata.csv"), which means the skill instructs the agent to ingest and act on potentially untrusted, user-provided public catalog and metadata that can change matching behavior and downstream actions.