fanfuaji

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's CLI/library clearly calls the third-party Fanhuaji API (POST to https://api.zhconvert.org/convert as implemented in scripts/fanfuaji.py and documented in SKILL.md/README) and ingests the API's returned text (result.text) as part of its workflow (printed or written to files), exposing the agent to untrusted external content that can influence outputs and downstream actions.