job-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's workflow explicitly drives a browser to fetch job listings from the public site hiring.cafe and "click through" to employer careers pages to extract full job descriptions (see Step 2 and Step 5 in SKILL.md), which are untrusted third‑party web content that the agent reads and uses to decide fit and next actions.