analyzing-android-malware-with-apktool

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill ingests untrusted APK files provided at runtime (see SKILL.md "Sample APK files for analysis" and scripts/agent.py which calls AnalyzeAPK(args.apk) and extract_strings(dx, a)/scan_suspicious_apis(dx)), and those extracted third‑party strings, URLs, IPs and API findings directly influence risk scores and MITRE mappings, so arbitrary content in APKs could indirectly inject instructions or change agent behavior.