em-social-content

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly accepts pasted URLs under "0. ✨ Nuevo
• Pegar URL o escribir idea" and states "Si pega URL directamente → Investiga y genera posts", meaning the agent will fetch and interpret arbitrary external web pages (untrusted public third‑party content) as part of its workflow, exposing it to indirect prompt injection.