solo-topics

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's script (scripts/solo-topics.js) calls public endpoints (default https://www.mixdao.world/api/topics and /api/topics/{topicId}/articles) and SKILL.md / references/api-details.md show those responses can include user-generated fields like article.content, keywords, and reportPrompt which the agent is instructed to read/parse as part of its workflow, so untrusted third‑party content could influence behavior.