seedhub

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill directly fetches and parses pages from the public SeedHub site (e.g., https://www.seedhub.cc/s/{keyword}/ and https://www.seedhub.cc/movies/{id}/ and its /link_start/ redirects), ingesting untrusted/user-generated titles, descriptions and link metadata that the agent reads and uses to decide which links to resolve and return, which could enable indirect prompt injection.