vibe-writer-pro

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's Phase 1.2 "热点新闻模式" explicitly runs opencli commands (e.g., opencli zhihu/weibo/twitter/reddit/hackernews) and falls back to Playwright browser_navigate("https://www.zhihu.com/hot") / browser_navigate("https://s.weibo.com/top/summary") to collect public/social content, which the agent is required to read, interpret, and use to drive topic selection and subsequent writing/actions, exposing it to untrusted third‑party user‑generated content.