connect

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly shows the agent reading and acting on user-generated third-party content (e.g., "Find GitHub issues labeled 'bug' from this week, summarize, post to #bugs on Slack" in Examples and the Supported Apps list including GitHub, Reddit, Twitter), so the agent will fetch and interpret untrusted public content that can influence subsequent actions.