mrbeast-perspective

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow (SKILL.md Step 2 "必须使用工具（WebSearch等）获取真实信息") explicitly instructs the agent to fetch and research open web sources (YouTube, podcasts, media, benchmarks) and the repo includes runnable tooling that downloads arbitrary YouTube subtitles (scripts/fetch_youtube_subtitles.sh), so it will ingest untrusted third‑party content that can materially influence its actions.