vibe-writer-pro

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Phase 1.2 ("调用搜索工具或用户提供的资料 — 查找最新信息、真实案例、搜索竞品内容") and Workflow Rule 2 explicitly require searching and ingesting public web/third‑party sources as mandatory research inputs, which the agent then reads and uses to drive drafting, review, and distribution—exposing it to untrusted third‑party content that could carry indirect prompt injections.