openssl-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md and references/cheatsheet explicitly instruct using openssl s_client to connect to arbitrary hosts (e.g., "echo Q | openssl s_client -connect host:443 -servername host") and to extract/follow OCSP URIs from fetched certificates, so the agent would ingest untrusted public server certificate data (and URIs) that can influence subsequent actions.