posthog-pls-transition-leads

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly instructs the agent to perform web searches for company research (SKILL.md Step 3 / README "Web search") and to "fetch every link in the draft to confirm it resolves" (SKILL.md Step 7), which requires ingesting untrusted public webpages/URLs that can influence outreach content and subsequent actions.