tweet-rl-tracker

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill's SKILL.md explicitly instructs the agent to navigate to public tweet URLs (e.g., new_page({ url: 'https://x.com/.../status/...' })), use Chrome DevTools MCP to evaluate page scripts and extract tweet text/author/metrics and screenshots from arbitrary public Twitter/X pages, which is untrusted user-generated content the agent reads and acts on as part of its workflow.