content-cleanup

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill instructs the user to run scripts in the browser on live X/Twitter pages (e.g., "Navigate to x.com/YOUR_USERNAME/likes" and paste scripts into DevTools), so the agent/script reads and acts on untrusted, user-generated DOM content from public pages.