ghost

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly retrieves content from a Ghost site (e.g., "List Posts", "Get Post" actions and the Membrane proxy requests to the Ghost API) which exposes untrusted, user-generated blog/page content that the agent is expected to read and could influence subsequent actions.