message-market-fit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's Step 2 explicitly instructs the agent to fetch and extract page content from user-provided URLs and competitor websites ("If the user provides a URL, fetch the page content" / "If the user provides competitor URLs, fetch the competitor's above-the-fold messaging"), and that third‑party content is then read and used to score differentiation, build hypotheses, and drive next actions, so it clearly ingests untrusted public web content that can influence behavior.