content-repurpose

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly accepts an "Original content" as a URL (SKILL.md Input Required) and Step 3 of the Process requires analyzing/extracting elements from that original content, so the agent ingests and acts on arbitrary public/user-provided web content which could carry untrusted instructions.