job-search-strategist

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly instructs the agent to fetch and analyze open web content (e.g., "Use web search tools extensively" and "Glassdoor/Indeed reviews: Search '[company name]' Glassdoor reviews' or use web_fetch on Glassdoor URL", plus LinkedIn and company social media), meaning it ingests untrusted, user-generated third-party content as part of its workflow.