find-nearby

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill fetches and parses community-maintained OpenStreetMap data (via Overpass API and Nominatim), and the agent reads and uses fields like names, opening_hours, websites, and locations as part of its workflow (e.g., determining "open now" and choosing/delivering directions), so untrusted user-generated content from those public endpoints could indirectly influence agent decisions.