freelance-gig-finder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's Step 2 explicitly runs tinyfish agents to fetch and scrape live job listings from public sites (Upwork, Contra, We Work Remotely, Freelancer, LinkedIn), ingesting untrusted user-generated postings which the agent reads and uses to filter, deduplicate, sort, and decide what to present — enabling indirect prompt injection.