app-store

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The apple-search-ads skill explicitly allows WebSearch and instructs the agent to "Use Search Ads intelligence tools — SearchAds.com, SplitMetrics Acquire, AppTweak" and to "Analyze competitors" (apple-search-ads/SKILL.md), which requires fetching and interpreting public third‑party App Store and web data that can materially drive keyword/bid/campaign decisions — so it clearly ingests untrusted third‑party content as part of its workflow.