Get Notes Auto Sync

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's main sync script (scripts/sync.js) explicitly fetches user-generated notes and original transcripts from the Get Notes endpoints (CONFIG.baseUrl https://get-notes.luojilab.com and login at https://www.biji.com), then parses and interprets that content (formatOriginalTranscript, classifyNote, generateMarkdown) as part of its workflow, so untrusted third-party content can influence categorization, filenames, and saved outputs.