reddit-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and caches public, user-generated Reddit content from the open Reddit API (see SKILL.md and scripts like scripts/submission.sh, scripts/search.sh, scripts/subreddit_top.sh which write JSON into cache/listings/*.json), and the README notes "AI-driven analysis ... moved on the side of Claude — he himself interprets JSON in cache/", meaning the agent is expected to read/interpret untrusted third-party content that could influence decisions and subsequent actions (including optional write flows in post_create.sh/comment_reply.sh).