wiki-ingest

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests and interprets user-provided documents from the vault (Step 1 "Read the Source") including "Web clippings — markdown files from Obsidian Web Clipper" and files in OBISIDIAN_VAULT_PATH/_raw/, and uses that content to drive page creation, updates, and file operations—so untrusted third‑party content could materially influence agent actions.