app-store-optimisation-codex

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's documentation explicitly requires using web browsing/scraping of public App Store and Play Store pages (references/data_sources.md: "Web browsing for page extraction" and SKILL.md's competitor analysis referencing scripts/scraper.py) to extract visible reviews and metadata—user-generated content that the agent will read and use to drive analysis and recommendations, creating a clear avenue for indirect prompt injection.