sustainability-rss-fetch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill fetches arbitrary public RSS/Atom feeds (via feedparser.parse in collect_candidates_from_feed/sync_feed using --feed-url, OPML assets/journal.opml, or subscribed feeds) and then expects an agent to perform semantic screening/interpretation of those fetched candidate entries, exposing the agent to untrusted third-party content that could carry indirect prompt injection.