design-inspiration

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's "Save to laniameda.gallery" workflow explicitly accepts arbitrary URLs (e.g., "Dribbble, Figma, website, etc.") and instructs the agent to extract tags "From the content being saved" and include the URL in the ingest payload and run the ingest script (SKILL.md Workflow B), which clearly exposes the agent to untrusted public web content that can influence tagging and downstream behavior.