resume-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly asks for job posting links and instructs the agent to "use web_fetch to analyze the job description" (see "Job-Specific Information" and "PDF Creation Process -> Step 2"), meaning the agent fetches and interprets arbitrary public job postings which will materially influence resume creation and tool decisions.