discord-harvest

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and parses Discord messages and embeds from third-party user-generated sources via the Server Channel bot API (Step A: "Fetch messages") and DM browser DOM extraction (Step B: "Extract messages from the DOM" and references/code-examples.md), so untrusted message content is ingested and used to classify and drive downloads/staging decisions.