Twitter/X Automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly searches and ingests public Twitter/X content (see "engagement_rules" with actions like search_hashtags and "reply_thoughtfully", and the "Search Tweets" Twitter API example), then uses that user-generated content to decide automated replies/likes, so untrusted third-party posts could indirectly inject instructions that change agent behavior.