social-card-gen

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Node.js flow explicitly supports a --url input and generate.js's loadInput() uses fetch(options.url) to retrieve and ingest arbitrary web pages (see generate.js and the SKILL.md / README "URL input" examples), so untrusted third‑party content is read and directly influences the generated social posts.