Wireshark Network Traffic Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill instructs the agent to load and inspect PCAPs and to follow/reconstruct network streams and HTTP objects (e.g., "Follow > HTTP Stream", "File > Export Objects > HTTP", and inspecting http.request.uri and dns.qry.name), which causes it to read arbitrary untrusted public web/forum/user-generated content captured from the network.