obsidian-clipper-template-creator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly asks for a sample URL and uses WebFetch to retrieve and analyze page HTML (references/analysis-workflow.md and the main Workflow steps), meaning it fetches and ingests arbitrary public web pages (schema/meta/selectors like {{fullHtml}}, {{schema:...}}, {{meta:...}}) which are untrusted third‑party content that the agent will read and interpret.