monitor-moodle

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and ingests user-generated content from a public Moodle instance (BASE_URL https://moodle.ncku.edu.tw) via fetch_full_course_data.py and fetch_notifications.py — storing forums, discussions, pages, assignment intros, notifications (resources/course_{ID}_full_data.json, resources/notifications.json) which are then cleaned, printed, and diffed by clean_course_data.py and diff_notifications.py, so untrusted third‑party content is directly read and interpreted.