memory-management

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's "Data Sources" and examples explicitly state that with connected SEO tools/analytics/search console it will "fetch current rankings" and automatically populate memory, and the "Update Triggers & Cross-Skill Integration" section requires ingesting outputs from rank-tracker and competitor-analysis (public competitor/site data) which the agent reads and uses to drive promotion/demotion and follow-up actions, so it clearly consumes untrusted public third‑party content that can change behavior.