transcript-organizer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's File Processing section explicitly supports reading transcripts "从 URL 读取（需用户授权）", meaning it fetches and ingests content from arbitrary URLs on the open web as part of its required workflow, allowing untrusted third-party/user-generated content to be read and influence processing.