competitor-intel

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly performs mandatory web searches and ingests content from open/public third-party sources—e.g., Crunchbase, LinkedIn, SimilarWeb, GitHub, Twitter/X, G2/Capterra/Trustpilot and Facebook Ads Library—and requires the agent to read and interpret that user-generated/untrusted content as part of its analysis, creating a clear exposure to indirect prompt injection.