analyzing-user-feedback

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow (SKILL.md steps 2–3 and references/WORKFLOW.md) explicitly instructs the agent to inventory, read, and synthesize user-generated feedback from public sources (e.g., reviews, G2/App Store, Reddit/community, support tickets), so the agent would ingest untrusted third‑party content that can directly influence its tagging, synthesis, and recommended actions.