AI Recruiting Engine

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to "research candidate backgrounds (public info only)" and to use/publicly scrape sources and boolean searches (e.g., site:github.com, dev.to, LinkedIn/public profiles) so the agent will fetch and interpret user-generated content from the open web, exposing it to indirect prompt injection.