twitter

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and ingests public, user-generated Twitter/X content via twitterapi.io (see SKILL.md tool list and usage patterns and client.py's twitterapi.io endpoints) and instructs the agent to read, summarize, and act on tweets/replies/articles (e.g., sentiment scans, search results), which exposes the agent to untrusted third-party content that could contain indirect prompt-injection.