photon

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill clearly ingests untrusted third-party content: e.g., references/examples.md "Web Scraping Pipeline" prompts for an arbitrary target URL and scrapes websites, and other examples (Daily Tech Digest, GitHub Issue Triage) pull RSS/GitHub content which the photon code reads and uses to make decisions and perform actions.