hackernews

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and ingests user-generated stories, comments, and profiles from the public Hacker News API at https://hacker-news.firebaseio.com/v0 (see SKILL.md endpoints and examples for item and user JSON), which exposes the agent to untrusted third-party content that could contain instructions or prompt-injection vectors.