facebook-page

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill programmatically fetches and ingests user-generated social media content (Facebook posts/comments via the Graph API in scripts/cli.js and fb_post.js, and public X/Twitter content via scripts/x_digest_collect.js and scripts/x_digest_to_fb.js which call the "bird" tool and download tweet media), and that content is parsed and used to decide/post actions (e.g., selecting tweets to repost, building captions, replying/hiding/deleting comments), so untrusted third-party content can influence tool behavior.