selection-randomizer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly ingests and reads arbitrary Google Sheets, CSV/Excel files and plain lists (e.g., "Pick a random row from this Google Sheet" with a Sheet URL), which are untrusted, user-generated third‑party sources that the agent must parse as part of its workflow, allowing potential indirect prompt injection.