competitive-analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md research workflow (Phase 1 "Search for competitors", "Finding Information" and Research Best Practices) plus supporting scripts (scripts/search_databases.py and scripts/verify_citations.py) explicitly instruct the agent to fetch and aggregate open public third‑party content (G2, Capterra, Reddit, Twitter, company websites, arbitrary URLs, DOIs/CrossRef), which is untrusted/user‑generated and is read and used to drive analysis and recommendations.