wp-to-jekyll

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs fetching and parsing live, public WordPress sites (Phase 1: HTTrack/wget site mirror and WXR/XML export) and then reads/interprets the mirrored HTML/XML content as part of its workflow, which is untrusted third-party content that could carry injected instructions.