baoyu-post-to-x

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly downloads remote resources and ingests public web content (see scripts/md-to-html.ts which "automatically downloads" remote images referenced by Markdown and scripts/x-quote.ts which opens arbitrary tweet URLs), so it fetches and uses untrusted third‑party content as part of its runtime workflow.