job-hunt-fetcher

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly ingests and parses user-provided screenshots of public job platforms (e.g., Boss直聘, 智联招聘, 前程无忧) as part of its required workflow (Step 1/Step 2), so untrusted third-party page content is read and written into jd-pool for downstream processing and could indirectly inject instructions.