blog-write

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Phase 2 research step explicitly instructs the agent to spawn a blog-researcher or use WebSearch to fetch statistics and image URLs from public sites (e.g., Pixabay/Unsplash/Pexels) and to extract and ingest page content/URLs for use in citation capsules and article decisions, exposing it to untrusted third-party content.