nostr-filter-designer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs building REQ messages and relay subscriptions to query Nostr relays (public, user-generated event sources) — e.g., "Use when building Nostr relay subscriptions, querying events" and the REQ examples in SKILL.md/references filter-patterns.md show fetching events from relays, which are untrusted third-party content the agent would read as part of its workflow.