trend-spotter

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly fetches and ingests open/public third‑party sources (Google Trends RSS, public news RSS / NewsAPI, GitHub Trending API, Hacker News API) and uses that untrusted, user‑generated/open‑web content as input to generate trend analyses and recommendations, so external content could materially influence the agent's decisions.