scratchpad-fetch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's scripts/fetch_urls.sh uses curl to download arbitrary user-provided URLs and appends their content into docs/scratchpad/.md, meaning the agent will ingest untrusted third-party web content (public websites) specified at runtime.