solo-research

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs the agent to fetch and scrape open/public third‑party sites (e.g., Reddit via MCP Playwright on old.reddit.com, Product Hunt, TrustMRR, and arbitrary competitor pages using WebFetch/WebSearch) and to extract quotes, comments, pricing and revenue data that directly inform its research outputs and recommendations, meaning untrusted/user‑generated content can materially influence decisions and tool use.