reddit-2

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's script (scripts/reddit_scraper.py) and TECHNICAL.md explicitly fetch and parse user-generated content from Reddit's public JSON API (e.g., https://www.reddit.com/r/{subreddit}/{sort}.json and /search.json), and that content is read/parsed and presented for the agent to act on, so untrusted third-party posts could indirectly inject instructions.