PrivateInvestigator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflows (e.g., FindPerson.md, SocialMediaSearch.md, ReverseLookup.md) explicitly instruct agents to fetch and parse public third‑party user-generated content from open web and social platforms such as Facebook/LinkedIn/Twitter/X, people‑search sites (TruePeopleSearch, Spokeo), Holehe, TinEye/PimEyes, and forum results, which are untrusted sources that could carry indirect prompt injection.