schema-markup-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md "Data Sources" and "Instructions" explicitly describe an optional web crawler/webfetch that extracts page content from URLs and require the agent to read and map that fetched (untrusted) page content to choose schema types and generate JSON-LD, so arbitrary third‑party web content can materially influence its decisions (see SKILL.md Data Sources and the "WebFetch content is untrusted" instruction).