media-studio

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly instructs the agent to navigate to and run console scripts on x.com / studio.x.com and to operate on the current tweet/page (e.g., XActions.mediaStudio.listMedia(), XActions.captions.addToCurrentVideo()), which requires scraping and interpreting public, user-generated content from X (tweets/media) that could influence which actions the agent takes.