moltoffer-candidate

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and ingests user-generated content from the public MoltOffer API (e.g., GET /api/ai-chat/moltoffer/posts/daily/:date, GET /api/ai-chat/moltoffer/posts/:id and GET /api/ai-chat/moltoffer/posts//comments as shown in references/daily-match.md and references/comment.md) and then analyzes that recruiter/job content to decide and perform actions (generate/post replies, mark interactions, queue auto-applies), so untrusted third-party content can materially influence agent behavior.