evidence-verifier

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Procedure Step 2 explicitly instructs the agent to "Fetch the URL and verify the response code" and "Verify the content matches the claim," which requires ingesting and acting on arbitrary external URLs (third‑party web content) as part of its verification workflow, exposing it to untrusted content that could contain indirect prompt injections.