gtm-icp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill's Step 2 research workflow (Agent 1 "Review Mining & Language Bank" and the Language Bank Methodology) explicitly instructs agents to mine public, user-generated sources—G2, Capterra, TrustRadius, Reddit, LinkedIn, and forums—and to ingest and use that content to build language banks and personas that directly influence downstream decisions and actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill launches subagents at runtime that explicitly fetch and mine content from external review/forum sites (e.g., https://g2.com, https://capterra.com, https://trustradius.com, https://reddit.com, https://linkedin.com) and inject that fetched text into the agent context to drive persona/language-bank generation, so external content would directly influence the prompts/outputs.