keyapi-facebook-analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's SKILL.md and scripts/run.js show it calls the KeyAPI Facebook MCP server (https://mcp.keyapi.ai/facebook/mcp) to fetch public Facebook profiles, group posts, photos, Reels and events—all user-generated, untrusted third‑party content—which the agent loads, parses, and synthesizes into reports, so those external contents can influence its actions.