business-card-scanner

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The scanner (scripts/business_card_scanner.py) accepts arbitrary user-supplied business card images via the CLI --input path and runs pytesseract.image_to_string on the image, so it ingests untrusted, user-generated content (the card text) that the agent reads and interprets.