ghost-blog

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill directly ingests user-generated content from a third-party Ghost site via the Admin API (see api_request in scripts/ghost_core.py and usage in scripts/posts_browse.py, posts_crud.py and posts_bulk.py which fetch post HTML/titles/tags) and that content is used to filter/select posts and drive bulk operations, so untrusted post content could indirectly influence actions the tool takes.