content-pipeline

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Research stage (SKILL.md and EXAMPLES.md) spawns a "research-analyst" that "searches for recent data" and finds industry reports/case studies (and references RSS-based research in REFERENCE.md), which clearly ingests public, untrusted web content that the agents read and use to influence downstream editorial and distribution actions.