wiki-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow and prompts (SKILL.md and templates like compile-source-page.md and sources.md which record "Path Or URL") explicitly require the agent to read and act on source material including web pages and other external sources, meaning untrusted third-party content can influence compilation, indexing, and follow-up actions.