adaptive-guard

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly states it scans and classifies content "originating from external sources (files, URLs, API responses)" (references/static-rules.md §5) and includes an "Indirect Prompt Injection" class for URL/document poisoning (references/attack-taxonomy.md), showing the agent ingests untrusted third-party content as part of its workflow.