aibijia-price-comparison

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly scrapes public reseller websites via scrapers/ (TokenPriceScraper.fetch_page and KawangScraper in SKILL.md) and ingests community/vendor submissions (data/sources.json and the AIBIJIA_API /submit endpoint), which are untrusted, user-generated or public-web content that the agent parses and uses to drive pricing, listings, and alerting decisions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill's install and CI steps explicitly clone and run code from the repository URL (git clone https://github.com/ka-pi-ba-la/AIbijia.git and subsequent pip install / python scrapers/run_all.py in the workflow), meaning remote code is fetched at runtime and executed from that external URL.