consult-chatgpt-pro

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md workflow explicitly opens https://chatgpt.com in the user's desktop browser, submits a curated packet, captures the ChatGPT response, and uses that external advice in its recommendations (see SKILL.md steps 6–9 and the Prompt Template), so it ingests untrusted third-party-generated content that can influence decisions.