sales-integration

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs ingestion of open/public third-party content (e.g., scraping APIs like Outscraper and OpenWeb Ninja, inbound email parsing via Postmark, and webhook callbacks from many public tools) as part of integration workflows, meaning the agent would read and act on untrusted, user-generated web/email content that could influence subsequent actions.