learning-faq-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly states in SKILL.md that it builds FAQs from "Forum posts, support tickets, survey data" and the CLI example (--source "forum-data.csv"), and its execute() accepts a content parameter that it ingests and processes, so it will consume untrusted, user-generated third-party content as part of its workflow.