summarize-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and processes arbitrary public URLs (e.g., YouTube, news, blogs) as part of its runtime workflow — see summarize.py (get_web_content/process_url and extract_* functions) and the SKILL.md/README which instruct users to run the skill with --url — so untrusted, user-provided web content is ingested and used to produce summaries that can influence subsequent decisions.