wiki-ingest

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). SKILL.md explicitly accepts and ingests user-shared links/articles/videos/PDFs (see "When to Use" and the source note frontmatter 'url' in Step 1), meaning the agent reads untrusted third‑party content and uses it to create/update pages and drive follow-up actions.