sales-intent

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly requires ingesting and acting on third-party intent/profile data (e.g., Apollo/Bombora intent, ZoomInfo "/enrich/intent", Clearbit Reveal GET endpoint, RB2B identity APIs) and even directs researching LinkedIn profiles, so the agent is expected to read untrusted/public user-generated content and use it to influence decisions and actions.