last30days

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and ingests user-generated content from open/public sources (Reddit and X) and general web pages—see SKILL.md ("Research ANY topic across Reddit, X, and the web") and scripts/last30days.py which calls openai_reddit, xai_x/bird_x and instructs Claude to run WebSearch—and that research output is synthesized and used to decide next actions and to generate prompts, so untrusted third‑party content can materially influence agent behavior.