topic-collector

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly directs the agent to use WebSearch to fetch and ingest content from open/public third-party sources (Twitter/X, Reddit, Product Hunt, Hacker News, blogs) and requires extracting and interpreting the original URLs and post content, which could allow untrusted user-generated pages to inject instructions.