yc-startup-landing-page

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly says "User shares a URL and asks for copy feedback" (see "When to Use This Skill"), which clearly expects the agent to ingest and interpret content from arbitrary public URLs supplied by users, exposing it to untrusted third‑party content that could carry indirect prompt injection.