geo-optimizer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly instructs the agent to fetch and ingest open web content (e.g., "fetch URL via WebFetch" in Step 3 and the mandatory "Evidence Hunt" in references/geo-techniques.md which requires WebSearch/WebFetch/Google Scholar), so untrusted public pages are read and used to drive audits/rewrites and can therefore enable indirect prompt injection.