competitive-analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This playbook explicitly instructs the agent to gather and read public, user-generated content as core inputs (e.g., G2, Capterra, Trustpilot, App Store/Google Play reviews, Reddit threads, Twitter/X mentions and other open web sources), which are untrusted third‑party sources the agent would read/interpret and could enable indirect prompt injection.