notion-mastery

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill ingests and processes public third‑party data (e.g., Apollo leads and LinkedIn profiles/posts) as part of its workflows — see references/apollo-workflow.md and references/n8n-workflows.md ("HTTP Request
• GET leads de Apollo", "Buscar en LinkedIn", "Enriquecer Datos de Contacto") — so the agent would read untrusted, user-generated content.