find-data

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill's SKILL.md explicitly instructs the agent to fetch and ingest open/public third-party content (e.g., "Phase 3: Visit the actual data page (use web_fetch)" and Category F's social media/digital-trace sources like Twitter/X, Reddit/Pushshift, news archives and other scrapeable public websites), which are untrusted/user-generated sources that the agent will read and use to decide next actions such as scraping, downloading, and application steps.