privacy-policy-malik-taiar

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's mandatory workflow explicitly requires fetching and analyzing publicly accessible third-party sites and documents (e.g., "Existing website URL (for analysis)" and "Research 3-5 privacy policies" in SKILL.md / SKILL.fr.md Step 2 and Step 4), so the agent will ingest untrusted public web content that can materially influence drafting decisions.