ai-tech-rss-summary

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly ingests and normalizes RSS/external subscription items (see "Input Model" and "RSS Source Asset" referencing assets/hn-popular-blogs-2025.opml and its public gist URL), which are open/public third‑party feeds and are expected to be read and summarized by the agent, exposing it to untrusted user-generated content.