daily-briefing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow (SKILL.md and BRIEFING.md) instructs the agent to include "Quick Reads" / news and market updates and to use web_search or a weather skill (prerequisites and troubleshooting) and lists external task sources like "GitHub issues" — showing the agent will fetch and interpret public, user-generated web content (news, market data, issues) which can drive follow-up actions (see "Post-Briefing Actions" in references/advanced-patterns.md), exposing it to indirect prompt injection risk.