amass

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's documentation and workflows (e.g., amass enum -passive and the provided ~/.config/amass/config.yaml listing public data_sources like Shodan, VirusTotal, and Censys) show it fetches and ingests open third-party OSINT data that the tool reads and uses to drive enumeration and follow-up actions, exposing the agent to untrusted external content.