founder-sales

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Signal-Based Outreach workflow in SKILL.md explicitly instructs the agent to use tools like exa-company-research, exa-people-research, exa-personal-site, and exa-x-search to scan/public sites (e.g., LinkedIn, X, Reddit, HN, Crunchbase, TechCrunch, GitHub, personal blogs) for prospect posts and signals, which are untrusted third‑party/user‑generated sources that the agent must read and use to drive outreach and follow-up actions.