prospect-researcher

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly requires using web search (e.g., "Web search capability (Brave Search or similar)" in README) and the Research Process directs the agent to gather public/untrusted content such as LinkedIn posts, social activity, job postings, BuiltWith, GitHub, and other public websites, so the agent will read and interpret arbitrary third‑party/user‑generated content as part of its workflow.