newsletter-creator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md's curation workflow and "CURATED CONTENT"/"CURATED LINKS" sections explicitly require collecting, reviewing, and annotating third‑party articles and external links (e.g., "COLLECT... Save articles to curation tool" and "CURATED LINKS: 3-5 external items with annotations"), so the agent would ingest untrusted public web content that can influence selection and writing decisions and therefore could enable indirect prompt injection.