ak-threads-booster

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). /draft and related modules explicitly fetch and interpret open web and social content (e.g., Step 2.5 Freshness Gate and Step 3b "Online Research" which run WebSearch/WebFetch and collect source links) and /refresh can scrape Threads via Chrome MCP or use the Threads API — these are untrusted, user-generated third‑party sources whose content is read and used to decide freshness, angles, and drafting behavior, so they could enable indirect prompt injection.