obscura-browser

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow and scripts (SKILL.md and scripts/command_templates.py) explicitly instruct using obscura fetch/scrape against arbitrary public URLs (e.g., "obscura fetch https://news.ycombinator.com" and scrape examples), meaning the agent ingests and is expected to read/interpret untrusted third‑party web content that could influence subsequent actions.