news-extractor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). Yes — the skill accepts arbitrary public news URLs (scripts/extract_news.py), performs HTTP fetches via RequestsFetcher/CurlCffiFetcher (scripts/crawlers/fetchers.py) and parses the returned HTML in the crawlers (scripts/crawlers/*.py), so it directly ingests and interprets untrusted third‑party web content.