bible-buddy

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's mandatory Execution Flow (Step 2: "Fetch Scripture — Run Bundled Scripts") explicitly runs scripts that retrieve content from public third‑party sites (e.g., uv run ... scripts/fetch_sefaria.py, fetch_biblegateway.py, fetch_pseudepigrapha.py, fetch_apostolic_fathers.py) and requires the agent to read/verify and base interpretations on those fetched texts, so it consumes open/public untrusted web content that can materially influence actions.