ai-tech-rss-fetch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and parses RSS/Atom feeds from open web URLs (e.g., sync_feed calls feedparser.parse in scripts/rss_subscribe.py and SKILL.md describes syncing feeds/OPML, with assets/hn-popular-blogs-2025.opml listing many public feeds), ingests untrusted user-generated third‑party feed content as part of its workflow, and uses parsed entry fields (title/summary/links/content_hash/dedupe keys) to drive storage and deduplication behavior that can materially influence subsequent actions.