wiki-me

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs the agent to ingest and read "raw sources" such as web articles (via Obsidian Web Clipper) and public sites like the referenced Tolkien Gateway, so the LLM will consume untrusted third‑party web content as part of its ingest workflow which can change wiki updates and subsequent actions.