douyin-hotlist-overall

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches real-time Douyin (抖音) hotlist data (user-generated social media content) as shown by the providerConfig endpoint "/api/v1/douyin/app/v3/fetch_hot_search_list" in references/skill.json and the SKILL.md description, and the agent consumes and uses those trending items to decide what is "hottest," so untrusted third‑party content can materially influence its outputs.