content-planner

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Phase 1 "Step 3: Research" explicitly requires performing WebSearch and WebFetch (e.g., "WebSearch 3-5 queries" and "If input is URL → WebFetch phân tích nội dung") and then uses those external sources to build the content plan and drive writing, so it ingests untrusted public web content that can materially influence subsequent decisions and tool use.