aeon-hacker-news-digest

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly fetches Hacker News stories and comment subtrees from public endpoints (hn.algolia.com and hacker-news.firebaseio.com) and instructs the agent to mine, read, quote, and use user comments for clustering and selection, exposing it to untrusted, user-generated content that can influence outputs.