forum-monitor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's Step 2 "Scrape and Collect" explicitly uses WebSearch/WebFetch to fetch threads from public forums (Reddit, Hacker News, ProductHunt, etc.) and requires extracting verbatim user-generated quotes and engagement metrics that are then used to classify, rank, and drive downstream actions, thereby exposing the agent to untrusted third-party content that could contain indirect instructions.