chartmetric

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly retrieves and acts on public, user-generated content via the Chartmetric API (e.g., scripts/get_artist_instagram_posts.py calling /SNS/deepSocial/cm_artist/{id}/instagram, get_artist_playlists.py calling /artist/{id}/{platform}/{status}/playlists, and the SKILL.md / references/advanced-workflows.md which chain TikTok/Instagram/playlist data), so the agent ingests untrusted third‑party social/web data that can materially influence decisions and next actions.