threads-writer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's MCP tools section explicitly names Firecrawl (mcp__firecrawl__firecrawl_scrape) to scrape competitor Threads profiles and instructs using those public, user-generated Threads posts for tone/structure in the workflow, which means the agent fetches and interprets untrusted third-party social content that can influence writing decisions.