Supplier Risk Monitor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly requires and integrates external_signals such as "news sentiment, regulatory changes, weather/disaster alerts" and public financial signals (e.g., Dun & Bradstreet/Moody's, layoff announcements, World Bank indices) in its Methodology (Steps 3–5) to compute composite risk scores and generate alerts, which demonstrates it ingests untrusted public third‑party content that can materially change decisions.