content-ideas-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly accepts and fetches arbitrary URLs (“If the user provides a URL, use WebFetch to retrieve the content” in Step 1: Collect reference material), so the agent will ingest and interpret untrusted public web content as part of its workflow, enabling indirect prompt injection.