app-store-optimization

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's workflow explicitly accepts app IDs and competitor app names and instructs the agent to analyze public App Store/Google Play metadata and user reviews (see "Review Analysis" input in SKILL.md and HOW_TO_USE examples like "analyze recent reviews for my app (com.myapp.ios)" and competitor analysis sections), which implies fetching and interpreting untrusted, user-generated content from public app stores as part of its decision-making.