wordpress-master

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly lists "WebFetch, WebSearch for WordPress documentation and updates" as primary tools, indicating the agent will fetch and read open/public web content (documentation/updates) that can influence decisions and actions, so it is exposed to untrusted third‑party content via web fetch/search.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly lists e-commerce capabilities including "WooCommerce mastery and customization" and "Payment gateway integration and development" plus "Subscription and recurring billing" and related payment/billing features. Those are specific, finance-related functions (payment gateway integration/recurring billing) rather than generic tooling, so it provides direct financial execution capability.