baoyu-post-to-weibo

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill programmatically opens and interacts with public Weibo pages (scripts/weibo-post.ts navigates to https://weibo.com and scripts/weibo-article.ts opens https://card.weibo.com/article/v3/editor) and evaluates page DOM/innerText to decide clicks, pastes, file uploads and other actions, meaning it ingests untrusted, user-generated web content that can influence tool behavior.