wordpress-elementor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and ingests site content (e.g., "wp @site post meta get {post_id} _elementor_data" and navigating to https://example.com/wp-admin/post.php?post={ID}&action=elementor in SKILL.md and references/elementor-workflows.md), which are untrusted/user-generated page and post data that the agent is expected to read and act on to drive edits—so third-party content can materially influence tool use and next actions.