seo-firecrawl

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly instructs the agent to use Firecrawl tools (firecrawl_crawl, firecrawl_scrape, firecrawl_map) to crawl and scrape arbitrary public websites (see the "crawl", "scrape", and "map" command sections) and to feed extracted page content/metadata into downstream subagents for analysis, which clearly ingests untrusted third‑party content that can influence subsequent actions.