content-engine

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow (SKILL.md — "Research & Preparation" and "Secondary Workflow: Content Audit & Refresh") explicitly instructs the agent to analyze "top-ranking content", "SERP features", and to "Pull content inventory (URLs...)" which requires fetching and interpreting public third‑party webpages/URLs (open web/competitor content) that could contain untrusted, user-generated instructions influencing decisions.