obsidian-clipper-template-creator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow ("Fetch & Analyze Reference URL" in SKILL.md and references/analysis-workflow.md) mandates using WebFetch or a browser DOM snapshot to retrieve and analyze user-provided/open-web pages (untrusted third‑party content) to verify selectors and populate template variables—content that directly drives selector choices, variable extraction, and AI prompt variables, so it can materially influence the agent's actions.