app-store-reviews

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill directly fetches and analyzes user-generated App Store reviews from public third-party endpoints (e.g., GET https://itunes.apple.com/{country}/rss/customerreviews/... and the iTunes Search API) and ingests that review text as part of its analysis and reply-generation workflows, exposing the agent to untrusted third-party content.