recon-fingerprint

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and analyzes arbitrary public webpages (e.g., SKILL.md commands like whatweb https://target.com, curl https://target.com, and the scripts scripts/tech_matcher.py (fetch_url), scripts/extract_headers.py, and scripts/waf_detector.py which call urllib.request.urlopen on user-supplied URLs), so untrusted third-party content is ingested and used to drive fingerprinting decisions.