domain-strategy

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's workflow (SKILL.md Step 4 and the "Audit current configuration" step) explicitly instructs running curl and checking live domains/redirects (public URLs) and auditing DNS/HTTPS behavior, which requires fetching and interpreting content from arbitrary public domains that could be untrusted and influence subsequent decisions.