twitter-downloader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill directly fetches tweet JSON from the public fxtwitter / vxtwitter APIs for arbitrary twitter.com or x.com URLs (see SKILL.md and scripts/twitter_downloader.sh), ingesting user-generated, untrusted content that the agent parses and uses to decide downloads and analyses, which could allow indirect prompt injection.