Art

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The Essay workflow mandates "deeply read the full blog post, essay, or input material" and explicitly requires running the Create Story Explanation (CSE-24) step with "/cse [paste the content or URL]" (SKILL.md → Workflows/Essay.md Steps 1–2), which requires ingesting externally authored web content or URLs that will be interpreted and used to construct generation prompts and actions—creating a clear avenue for untrusted third‑party content to influence tool behavior.