r06-alirezarezvani-claude-code-tresor-seo

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly crawls and ingests arbitrary public websites and SERP results (e.g., /content-audit https://example.com, /technical-seo https://example.com, /content-brief --analyze-serp, /page-speed-seo --sitemap https://example.com/sitemap.xml) and uses that untrusted third-party content to drive audits, briefs and follow-up actions, which could enable indirect prompt injection.