the-rewrite-room

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly supports /rwr:cite and routes tasks to a url-summarizer (plugins/summarizer/agents/url-summarizer.md) to summarize URL content, so it will fetch and interpret arbitrary public web pages as part of its required workflows, exposing the agent to untrusted third‑party content that could influence subsequent actions.