twitter-reader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and ingests user-generated content from public X/Twitter URLs (via https://r.jina.ai/https://x.com/... and documented in SKILL.md, README.md, and scripts/fetch_tweet.py / fetch_tweets.sh), so untrusted third-party posts could contain instructions that influence the agent's behavior.