mo-user

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow (mocli user search in SKILL.md) fetches user-generated public profiles from the墨问 platform (reply.users / intro fields) which the agent reads and can directly use (e.g., auto-select a UID) to drive subsequent actions, so untrusted third-party content could influence behavior.