wechat-theme-extractor-cn

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's scripts/extract.py fetches arbitrary public WeChat article HTML via curl and SKILL.md explicitly instructs the AI to read and analyze the generated .extracted_content.html and then generate/write theme configuration into markdown-to-wechat.html, so untrusted third-party page content can directly influence the agent's actions.