competitor-ad-tracking

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). SKILL.md explicitly instructs using scrapesocial to fetch and ingest ads from public third‑party sources (e.g., "scrapesocial facebook ads ...", "scrapesocial google ads advertisers get --domain", "scrapesocial linkedin ads search", "scrapesocial reddit ads search"), and requires the agent to read/transcribe and act on that user-generated/public ad content for analysis and decision-making, which could enable indirect prompt injection.