last30days

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and ingests untrusted, user-generated content from public Reddit, X, and general web pages (see SKILL.md "Research ANY topic across Reddit, X, and the web" and scripts/last30days.py + plans/feat-add-websearch-source.md which orchestrate OpenAI/xAI searches and Claude WebSearch) and then synthesizes that content to drive prompts and actions, so third‑party content can materially influence agent behavior and enable indirect prompt injection.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The README instructs cloning and installing remote code (git clone https://github.com/mvanhorn/last30days-skill.git into ~/.claude/skills/last30days) which the user then runs (python scripts) — a clear external code fetch that will be executed and is required for the skill to operate.