qbittorrent

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's scripts and API docs (e.g., scripts/qbit-api.sh and references/api-endpoints.md / references/quick-reference.md) fetch and ingest torrent metadata, file lists, trackers and allow adding arbitrary magnet/URL/RSS feed URLs from the public internet—untrusted third‑party content that the agent reads via list/info/files/rss endpoints and can drive actions (add, categorize, pause/resume/delete).