mission-control

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's "Scout" feature and Workshop/sub-agent research explicitly require a Brave Search API key and describe auto-discovering gigs/news/bounties from the web, indicating it fetches and ingests open/public third‑party content (search results) that the agent reads and can drive follow-up actions.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The prompt explicitly instructs using sudo to copy a systemd service into /etc/systemd/system and to run systemctl enable --now, which directs modifying system service files and elevating privileges on the host.