content-factory

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md and scripts (e.g., scripts/aggregator/fetch_all.py) plus the data/hotpool/*.json resources show the pipeline fetching and ingesting open public social content (Weibo, Zhihu, Reddit, YouTube, GitHub, linux.do, etc.) which the AI topic-scorer and content-generator are expected to read and use to choose topics and drive generation/publishing, so untrusted third‑party content can indirectly inject instructions.