postplus-shared

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's shared references (notably references/shared-tiktok-music-workflow.md and references/shared-research-preferences.md) explicitly require collecting and downloading public platform data and user-generated content (e.g., TikTok video/sample URLs, social posts, comments, metrics and scraped pages) so the agent will fetch and interpret untrusted third‑party content as part of its workflow.