wiza

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md explicitly allows sending proxy requests to the Wiza API (see the "Proxy requests" section) and describes Wiza as pulling contact data from LinkedIn profiles, so the agent can fetch and read untrusted, user-generated public web content which could influence subsequent actions.