post-to-xhs

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). Flagged because the skill's "内容校验" step explicitly states "如用户提供 URL 内容，先用 WebFetch 提取文本和图片", meaning it will fetch and ingest arbitrary user-provided web URLs (untrusted third-party content) as part of its workflow.