social-content

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md "Reverse Engineering Viral Content" workflow explicitly instructs collecting/analysing 500+ public social media posts (LinkedIn, Twitter/X) and the referenced references/reverse-engineering.md even recommends scraping tools (Apify, PhantomBuster), meaning the agent ingests untrusted user-generated third-party content that can influence its decisions and actions.