list-enrichment

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow explicitly instructs fetching live docs ("Fetch live docs: https://www.extruct.ai/docs" in SKILL.md Step 0) and relies on agent_type "research_pro" described as "Deep web research with sources" in references/api_reference.md, meaning the agent will ingest and act on public web content (untrusted third-party sources) to produce enrichment outputs that drive runs/column creation and other actions.