siyuan-article-import

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and ingests articles from public websites (e.g., mp.weixin.qq.com, zhuanlan.zhihu.com, juejin.cn and "其他博客") as part of its required workflow (see SKILL.md and references/workflows.md which call webReader to get article Markdown) and scripts (scripts/upload_image.py and the import workflow) download and process that untrusted, user-generated web content which is then parsed and used to decide processing and create notes—allowing third-party page content to materially influence actions.