contact-enhance

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs the agent to run actions and proxy arbitrary requests to the Contact Enhance API (see "Running actions" and "Proxy requests"), causing the agent to fetch and ingest publicly available third-party data from external sources which it will read and act on as part of its workflow.