social-content

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's "Reverse Engineering Viral Content" workflow in SKILL.md (step 2 "SCRAPE — Collect Posts at Scale") explicitly instructs collecting/scraping public LinkedIn/Twitter posts (naming tools like Apify and Phantom Buster) and then analyzing that user-generated content to drive playbooks and actions, so the agent would ingest untrusted third‑party social media content that can influence its decisions.