podcast

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly accepts and analyzes arbitrary URLs as input (see SKILL.md Step 1 "Accept: topic description, URL, or pasted text" and Step 6 "Any reference materials... 'Yes, URL(s)' — Provide URLs to analyze"), meaning the agent will fetch and interpret untrusted public web content which can materially influence generated podcast scripts and subsequent API calls.