xhs-copywriting-score

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow (Step 2 in SKILL.md and the fetch_xhs_trends.py script) explicitly fetches public Xiaohongshu "爆款笔记" via the API endpoint https://onetotenvip.com/skill/cozeSkill/getXhsCozeSkillData and requires the agent to analyze titles/descriptions from those user-generated posts to drive scoring and optimization decisions, exposing it to untrusted third-party content that could carry indirect prompt-injection instructions.