hackernews-frontpage

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill's main runtime fetches and parses live HTML from the public, user-generated Hacker News front page (see script.ts: await browse.goto(FRONT_PAGE_URL); const html = await browse.html(); and SKILL.md describing navigation to https://news.ycombinator.com), so untrusted third-party content is ingested and interpreted as part of its workflow.