seo-wordpress-manager

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill fetches user-generated WordPress post content from a configurable WPGraphQL endpoint (see scripts/wp_graphql_client.py and scripts/analyze_seo.py which call client.get_posts_with_seo using the graphql_url from config.json or env) and then has Claude read/interpret the generated analysis.json to produce changes, so untrusted third‑party content could carry indirect prompt injection.