discord-read

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill reads and searches locally synced Discord messages (via tools/discord_read.py and by directly reading ./data/{server_id}/{channel_name}/messages.md), which are user-generated content from a third-party platform that the agent will interpret, exposing it to untrusted content and potential indirect prompt injection.