google-ads-ad-extension-audit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly requires visiting and testing destination URLs and checking live website content for correctness/freshness (see "Audit Layer 2 — Sitelink Quality Check" — "Test each URL" — and "Audit Layer 8 — Promotion and Price Extensions" — "Are prices current and matching the actual website?"), i.e., ingesting public third‑party web pages whose content can change audit decisions.