blog-rewrite

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The workflow explicitly instructs the agent to search and fetch external web content (Phase 2 Research: "Find replacement statistics" via web searches and "Find images" from Pixabay/Unsplash/Pexels, verifying URLs), and to ingest those public, potentially user-generated sources into the rewrite process—allowing third-party content to alter decisions and outputs.