security-specialist

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The references/domains/compliance/legal-compliance-checker.md file explicitly lists the WebSearch tool and directs the agent to "research country-specific requirements" and "monitor regulatory changes," which indicates the agent will fetch and read open/public third‑party web content (e.g., public regulations, websites) that can materially influence compliance decisions.