link-poster

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md says the middleware auto-detects links and generates preview cards for public sites (Bilibili, GitHub, 抖音, 小红书) and uses an html-renderer to ingest/render those pages, meaning untrusted user-generated web content is fetched and used in the skill's workflow.