wewrite-wechat-ai-publishing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's pipeline explicitly scrapes public, user-generated sources (scripts/fetch_hotspots.py pulls real-time trending topics from Weibo, Toutiao, and Baidu and SEO scripts query Baidu/360), and those fetched hotspot titles are consumed by Claude for topic selection and writing—allowing untrusted third-party content to influence agent decisions and actions.