list-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's Research Process (SKILL.md, "Step 3: Research for Variety") explicitly instructs using Kiwix/Wikipedia category and list pages to expand lists, so the agent will fetch and interpret public, user-edited web content that could carry indirect prompt-injection payloads.