people-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to fetch live third‑party docs (Step 0: https://www.extruct.ai/docs) and to ingest/public LinkedIn profile content via Extruct's company_people_finder and the optional "linkedin" agent that uses {profile_url} to parse LinkedIn pages, so untrusted, user‑generated web content is read and can influence subsequent actions.