christensen

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill explicitly instructs teammates (notably the Jobs Archaeologist and the Trajectory Analyst) to "Use WebSearch" to fetch public web evidence and performance data and to incorporate those findings into the analysis and verdict, meaning the agent will ingest and act on untrusted, third‑party web content as part of its required workflow.