moai-mcp-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's examples and workflow explicitly fetch and ingest public, user-generated web content (e.g., the search_articles tool in examples.md which queries "hacker-news" and "medium", and reference/evaluation.md Step 1 which instructs "fetch additional information from the web"), so the agent is expected to read and act on untrusted third-party content that could contain instructions influencing subsequent tool use.