bluesky-reader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches public, user-generated Bluesky posts from the AT Protocol public API endpoint (https://public.api.bsky.app/xrpc/app.bsky.feed.getAuthorFeed) and the SKILL.md shows the agent reads/searches those feeds as part of its workflow, so untrusted third-party content could influence behavior.