competitive-analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly requires ingesting and citing publicly available third-party evidence (see "Inputs: Any available evidence (links, ... pricing pages, reviews)" and Workflow Step 3 "Gather publicly available facts" / templates that include "Evidence links"), so the agent is expected to read and interpret untrusted, user-provided web content as part of its workflow.