list-enrichment

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs fetching live documentation (SKILL.md Step 0: "Fetch live docs: https://www.extruct.ai/docs") and — per references/api_reference.md — uses an "research_pro" agent that performs deep web research to populate enrichment columns, so the agent will ingest and act on public web content whose instructions/sources can materially influence enrichment behavior.