carrier-relationship-management

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to fetch and act on open/public third‑party sources (e.g., "run FMCSA compliance check" and use DAT RateView, Greenscreens, Carrier411) in SKILL.md and references, meaning untrusted or user‑reported content would be read and used to make procurement, compliance, and escalation decisions—creating a clear vector for indirect prompt injection.