app-store-optimization

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill's SKILL.md and HOW_TO_USE examples (e.g., the Review Analysis input requiring an app_id like "com.myapp.app" and competitor-analysis examples for Todoist/Any.do) explicitly expect the agent to ingest and analyze public app-store reviews and competitor metadata from open/public sources, which are untrusted user-generated content that can influence decisions and subsequent tool actions.