multi-presence

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's "Async Tool Calls" explicitly show activations blocking on an external "web-search" and receiving tool_results with article titles and URLs (e.g., "https://..."), meaning the agent fetches and ingests open web content (untrusted third‑party URLs) into its runtime state and reasoning.