x-spaces

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md shows the agent calls the xquik.com API to fetch X (Twitter) Space participants and profile data (Space IDs come from x.com/i/spaces/), which is user-generated/untrusted content the agent ingests and summarizes as part of its workflow, so it could carry instructions that influence subsequent actions.