getnote-kb

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and returns user-generated third-party content (e.g., "getnote kb blogger-content <topic_id> <post_id>" which returns full original text in post_media_text, and "getnote kb live <topic_id> <live_id>" which returns full transcripts) as part of its required workflow in SKILL.md, so untrusted content could be ingested and influence agent decisions.