blog-analyze

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly states it will fetch and extract content from published URLs ("Input Handling: URL: Fetch with WebFetch, extract content" and Step 1: Content Extraction), meaning it ingests untrusted public web/blog content which the agent reads and uses to drive scoring and rewrite actions.