executive-assistant

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). Flagged because the skill's "Job Alert Delegation" workflow (in SKILL.md under Cross-Domain Coordination) explicitly instructs processing alerts from Otta/Wellfound/LinkedIn and verifying roles on public careers pages, which requires fetching and interpreting untrusted public web content that can materially change actions like creating application folders.