afrexai-business-automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to use web_fetch / web_search and exec (curl) to fetch and enrich data from public sources (e.g., "Enrich (company size, industry, LinkedIn)" in the Inbound Lead Processing pattern and the "Implementation with Agent Tools" table and curl examples), which means the agent will read and interpret untrusted, user-generated content from the open web.