screenpipe

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). SKILL.md explicitly describes searching OCR-captured screen content and audio via the local MCP/API (e.g., the search_screen_content tool and http://localhost:3030/search) which ingests whatever public web pages or user-generated content the user viewed and the agent reads/interprets to produce summaries and actions, so untrusted third‑party content could influence behavior.