seo-aeo-geo

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required inputs and workflow explicitly require inspecting rendered HTML/structured data for the target site and instruct the agent to "Test current AI visibility" by querying major AI products and noting which third‑party sources they cite (SKILL.md — "Required inputs" and "Workflow" step 3), which means the agent will fetch and read open/public webpages and their citations and use that untrusted content to drive remediation decisions.