event-networking

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly directs the agent to fetch and scrape open/public third-party sources—"Get the attendee list. ... or scrape the speaker/exhibitor pages" and to "read their LinkedIn, recent posts, company news"—and to use that untrusted, user-generated content to drive outreach, booking, and follow-up decisions.