blog-analyze

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly states it will "Fetch with WebFetch, extract content" for URLs and "Works with ... URL", and it ingests that fetched public webpage content to drive scoring, recommendations, and automated rewrite actions—allowing untrusted third-party page text to influence the agent's decisions and tool use.