aibtc-news-editor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly instructs the agent to fetch and verify live, open-web sources as part of decisions (e.g., SKILL.md's verification checklist: "curl -s 'https://mempool.space/api/v1/prices'" and cross-reference protocol dashboards/bitcoin-dev mailing list/GitHub/arXiv), so untrusted public content is ingested and can change approval actions.