bundle-social-comments

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly imports and retrieves user-generated social media comments via the Bundle.social API (see SKILL.md "Comment Import Flow" and the GET /api/v1/comment/import/comments endpoint in references/08-comment.md), which the agent is instructed to read and act on (moderate, reply, delete), so untrusted third-party content can materially influence actions.