nfl-data

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches ESPN public endpoints (SKILL.md: "NFL data via ESPN public endpoints") — e.g., get_scoreboard, get_news, and get_play_by_play return public article/play descriptions and are consumed by the agent (see the "How did the Super Bowl go?" example using get_scoreboard to find an event_id and then calling get_game_summary), so untrusted public web content is ingested and used to drive follow-up actions.