openclaw-feeds

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill concurrently fetches and parses public RSS feeds listed in scripts/lists.py (NEWS_FEEDS / GAMES_FEEDS / FINANCE_FEEDS) via scripts/feeds.py (urlopen + feedparser) and then ingests titles/summaries into its output workflow, which clearly exposes the agent to untrusted third‑party web content that could contain injected instructions.