anime-calendar

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly instructs using extract_content_from_websites and batch_web_search to fetch update information from public sites (bilibili.com, bgm.tv, dmzj.com), which the agent ingests and interprets to produce calendars/decisions, exposing it to untrusted user-generated third‑party content that could carry indirect prompt injections.