SECUpdates

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The Update workflow (Workflows/Update.md, Step 2) explicitly launches WebFetch requests to public sites (tldrsec.com, no.security, krebsonsecurity.com, thehackernews.com, schneier.com, risky.biz) and instructs the agent to extract headlines and summaries and then categorize/rank and act on that content, meaning it ingests untrusted third‑party web content that can influence agent decisions.