cold-outreach

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill instructs the agent to ingest and use arbitrary external links (company website, job description, and recruiter/hiring manager profiles such as LinkedIn) provided in "Step 1: Gather Context" and used in Step 2 to infer priorities, which are public third-party sources and therefore untrusted user-generated content.