rss-feed

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's rss_fetcher.py and README explicitly fetch and parse RSS feeds from public sites (e.g., techcrunch.com, wired.com, jiqizhixin.com), ingesting untrusted third‑party content that the agent reads and uses to produce downstream reports, so external content could influence behavior.