facebook

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill autonomously navigates to Facebook profile/group URLs and ingests the live page accessibility snapshot and JS-evaluated data (via pinchtab nav / pinchtab snap / /evaluate) as shown in scripts/fb-post.sh and references/internals.md, so it reads untrusted, user-generated third‑party content and uses that data to decide clicks, tagging, uploads and publish actions.