competitive-ads-extractor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly instructs scraping and ingesting ads from public third-party sources like the Facebook Ad Library and LinkedIn, and then reading and using that untrusted ad content to drive analysis and recommendations, so external/ad content could indirectly influence the agent's decisions.