blogwatcher-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill fetches and parses arbitrary public websites and feeds (e.g., internal/rss.ParseFeed and DiscoverFeedURL fetching feed and homepage URLs, internal/scraper.ScrapeBlog fetching and scraping blog pages, and scanner.ScanBlog/ScanAllBlogs using those results), so it ingests untrusted, user-provided third‑party content that the agent reads and interprets as part of its workflow.