idea-factory-v2

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill can ingest untrusted public web content via scripts/idea_factory_v2.py (run_search_fallback -> collect_web_signals calling the external SEARCH_FALLBACK script at /Volumes/workspace/scripts/search-fallback.sh using DEFAULT_QUERIES), and those returned titles/snippets are parsed and counted to compute trend_boost and signal scores which materially influence idea scoring, quality_pass, and repo-creation decisions.