open-construction-estimate

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly ingests public pricing databases (see SKILL.md "Data Sources: OpenConstructionEstimate, RSMeans Online, Government pricing databases") and instructions.md requires network access to pricing API endpoints, and the agent semantically reads and matches those third‑party records to drive matching, unit prices, and cost-estimation decisions—so third-party content is consumed and can materially influence actions.