amazon-shopping

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's mandatory workflow (SKILL.md) explicitly navigates to and snapshots public Amazon pages (e.g., "navigate_page url='https://www.amazon.com/s?k=...'" and "navigate_page url='https://www.amazon.com/dp/'" plus take_snapshot) and reads their accessibility trees to extract titles, ASINs, ratings, and reviews from untrusted, user-populated Amazon content which directly drives verification, ranking, and recommendation actions.