limitless-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly includes a "research.yaml" pipeline/template (listed under Available templates in SKILL.md and shown in references/pipeline-dsl.md) that runs a "web_search" step to combine lifelogs with web research, meaning it fetches and synthesizes open/public third‑party web content which the agent will read and use to drive downstream actions.