aiken-dex-security-audit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This audit playbook explicitly requires the agent to consume external repository URLs or code snapshots and to use/cite public docs/CIPs (see "Inputs ... 1) Repo URL or code snapshot" and "Cite sources ... official docs/CIPs"), so the agent would read and interpret arbitrary public/user-provided code and documentation, exposing it to untrusted third-party content.