leads-researcher

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly ingests content from public third-party sources—e.g., company websites, LinkedIn/job boards, news, BuiltWith/GitHub, and APIs like Clearbit and Hunter.io—as described in references/full-guide.md and SKILL.md, and it uses that external data to compute intent scores and drive contact-discovery actions, which could allow indirect prompt injection via untrusted user-generated or public content.