spreadsheet-automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly shows pulling and scraping live web content (IMPORTXML / IMPORTHTML in Step 2) and making arbitrary external HTTP requests via Apps Script (UrlFetchApp.fetch in the fetchAPIData and postToAPI/publishScheduledPosts examples), which ingests untrusted public web/social/API content that is then read and used to drive automated actions—creating a clear path for indirect prompt-injection from third-party sources.