topic

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's core functionality ("市场热点分析：基于近期各大平台榜单数据") explicitly requires ingesting recent public platform chart data from third-party sites, which the agent would fetch and interpret to drive topic selection and scoring, creating a vector for indirect prompt injection.