podcast-production

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The PodcastDistributor.validate_feed method calls requests.get(self.rss_feed_url) to fetch and parse arbitrary RSS feed URLs (public third-party websites), which means the agent will read untrusted external content that could contain injected instructions.