pinterest

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly navigates and scrapes public Pinterest pages (see SKILL.md "Search Pinterest" steps using https://www.pinterest.com/search/pins/ and the scripts like search_pins_scrape / get_pin in scripts/pinterest_api.py), ingesting user-generated pin HTML/JSON that the agent parses and acts on (extracting image URLs and sending media), so untrusted third‑party content can influence the agent's tool use and outputs.