aggregating-crypto-news

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill explicitly fetches and ingests public RSS feed content (see config/sources.yaml and SKILL.md) via runtime code in scripts/feed_fetcher.py and scripts/feed_parser.py, and that untrusted third‑party content is parsed, scored, filtered, and used to drive output/alerts—so it can indirectly inject instructions that affect decisions and actions.