performing-ot-vulnerability-assessment-with-claroty

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's workflow (fetch_ics_advisories in SKILL.md and scripts/agent.py) explicitly fetches and ingests the public CISA KEV feed at https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json and uses those external advisories to correlate vulnerabilities and drive risk scoring/prioritization, so third‑party content can materially influence agent decisions.