writing-effective-prose

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's INSTRUCTIONS.md explicitly requires fetching public web content (e.g., "Step 0: トレンド調査… WebFetchで https://zenn.dev / https://zenn.dev/trending を確認" in the Zenn workflow) and contains additional web-scraping/API examples (e.g., a Python web-scraping spec in the AI-assisted research section), so the agent is instructed to ingest and act on untrusted, user-generated third‑party pages as part of its workflow.