tech-stack-teardown

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill clearly fetches and interprets public, untrusted web content—e.g., scripts/recon.py's scan_website_source uses curl to fetch https://www., scan_apify_profiler invokes Apify to crawl sites, and SKILL.md describes web searches of Trustpilot/Reddit/SpamCop—and those results are used to drive detections and reporting, so third-party content can materially influence agent decisions.