sales-anymailfinder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests public, user-generated content — e.g., Email Finder by LinkedIn URL (POST /v5.1/search/linkedin.json) and the Chrome Extension that extracts emails from "any website/LinkedIn profiles" — and the returned data is used to drive verification, outreach, and follow-up actions, so untrusted third‑party content can materially influence the agent's decisions.