jina-web-fetch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's script and SKILL.md explicitly fetch and ingest arbitrary public web pages (e.g., the example "https://x.com/..." and the scripts/fetch_with_jina_fallback.sh which accepts any URL and writes out fetched page content), so it consumes untrusted third‑party/user‑generated content that could contain instructive text influencing downstream parsing or actions.