settings-privacy

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflows explicitly instruct running console scripts on x.com (e.g., /settings, /settings/muted_keywords, and the followers page), which requires reading and acting on user-generated public page DOM content from an untrusted third-party site.