last30days

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and ingests user-generated content from Reddit and X (Twitter) and arbitrary web pages via WebSearch ("Research ANY topic across Reddit, X, and the web" / "Run Reddit/X searches" / "do WebSearch"), and the agent is required to read and synthesize those third‑party posts as part of its workflow, exposing it to indirect prompt injection from untrusted sources.