google-ad-scraper

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly scrapes public Google Ads content (using the Apify actor "burbn/google-ads-search" and the resolve_advertiser_id flow that visits https://adstransparency.google.com in scripts/search_google_ads.py), so the agent ingests untrusted third-party ad content which can influence its analysis and follow-up actions.