website-design

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow explicitly asks the user for an "Existing web presence" URL (Phase 1 question 3) and then mandates "If a URL was provided, fetch it. Analyse: current colour temperature, type personality, motion level" (Phase 2 Step 2), which means the agent will fetch and interpret arbitrary public third‑party pages to derive design choices that materially influence component selection and build decisions.