gtm-partner

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly reads ~/.idea-validator/latest-evaluation.json and uses its market_research_raw (which the doc says includes Reddit posts, competitor reviews, Google Trends and YouTube data) to pre-fill recommendations and cite pain points, so it ingests untrusted, user-generated public content and interprets it as part of its workflow.