seo

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's analysis scripts and workflow explicitly pull and process Google Search Console data (e.g., gsc-query-page-28d.json via the GSC API shown in references/gsc-api-reference.md) and device/country breakdowns (gsc-query-page-device-28d.json / gsc-query-page-country-28d.json) — these are user-generated, third-party query/page records that the agent reads and interprets to drive recommendations and actions, meeting the criteria for indirect prompt injection risk.