fieldtheory-cli-bookmarks

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly syncs and ingests X/Twitter bookmarks from third-party, user-generated content via ft sync (Chrome session or --api) and the SKILL.md includes agent integration examples that tell an AI to read/search/summarize those bookmarks, so untrusted web content could influence agent actions.