OSINT

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs agents to gather and interpret content from public websites, social media, search engines and archived content (see "ALLOWED: Public sources only" and the Researcher descriptions like "PerplexityResearcher
• Current web data, social media") which exposes the agent to untrusted, user-generated third-party content that it must read as part of its workflow.