analyzing-user-feedback

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly instructs ingesting and analyzing external, user-generated sources (e.g., "reviews, surveys, community" in SKILL.md Inputs and "Reviews (G2, App Store, Reddit/community)" in references/WORKFLOW.md), so the agent is expected to read untrusted third‑party content that can materially influence recommendations and next actions.