deepvista-vistabook

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md for the +run command explicitly warns that running a VistaBook "may ... search the web and take other actions," which indicates the agent will fetch and interpret open web content (untrusted third-party sources) as part of its workflow and could let that content influence subsequent actions.