alphaear-news

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill fetches and ingests open, third-party news and social content (e.g., NewsNowTools.fetch_hot_news requests https://newsnow.busiyi.world/api/s?id=... and ContentExtractor.extract_with_jina calls Jina Reader at https://r.jina.ai/) from user-generated/untrusted sources listed in references (weibo, zhihu, xueqiu, Hacker News, etc.) and then reads/aggregates that content into reports, exposing the agent to indirect prompt injection.