clay-buying-signals-5

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly instructs ingesting public, user-generated third-party sources—e.g., tracking LinkedIn job changes and Indeed job postings, monitoring Crunchbase funding data, BuiltWith tech changes, and website visitors—so the agent would fetch and interpret arbitrary web content as runtime signals.