zopia-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill polls the third‑party Zopia API (scripts/query_session.py and _common.py) and parses untrusted session "messages" and workspace fields (including extracting URLs in scripts/download_results.py and SKILL.md's "自动执行下载" workflow) and then automatically downloads/acts on those external URLs, so content from public/third‑party sources can directly influence tool actions.